| Along with the industrial control system and the depth of the fusion of information and communication technologies,the traditional and new means of network attack emerge in endlessly,industrial control system is facing increasingly serious problem of information security technology for industrial control protocols depth resolution and anomaly detection system has become a research focus.For industrial control system information security monitoring,based on the data of high-speed bumpless collection and the depth of the known and unknown industrial control protocol parsing of industrial network and industrial process behavior anomaly detection methods,construct a certain commonality of industrial control system anomaly detection framework.Based on the safety analysis of the process framework,first of all to industry in the network communication to the undisturbed data acquisition analysis,then the study of the depth of the industrial control protocol parsing,select the appropriate multiple pattern matching algorithm and build complete filtering and parsing rules library,depth analysis of known protocols,secondly by unknown protocol syntax semantics of reverse design agreement with "keyword and tree" quickly add protocol,the design method of further perfecting industrial protocol parsing accuracy;Extracted based on the analytical data,based on time series of network traffic anomaly detection and industrial process behavior baseline testing two analysis methods,implementation of information security monitoring function of industrial control system.Based on the in-depth study of the system safety monitoring framework,this thesis designed and implemented the system monitoring software and completed the functional verification of anomaly detection and early warning in the actual industrial control system simulation platform,which proved the effectiveness and accuracy of the framework and provided the basis for the safe operation of the industrial control system and the security policy decision. |
PDF Full Text Request