Simplified Method for Fast and Efficient Incident Detection in Industrial Networks
The result's identifiers
Result code in IS VaVaI
<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216305%3A26220%2F20%3APU137136" target="_blank" >RIV/00216305:26220/20:PU137136 - isvavai.cz</a>
Result on the web
<a href="http://dx.doi.org/10.1109/CSNet50428.2020.9265536" target="_blank" >http://dx.doi.org/10.1109/CSNet50428.2020.9265536</a>
DOI - Digital Object Identifier
<a href="http://dx.doi.org/10.1109/CSNet50428.2020.9265536" target="_blank" >10.1109/CSNet50428.2020.9265536</a>
Alternative languages
Result language
angličtina
Original language name
Simplified Method for Fast and Efficient Incident Detection in Industrial Networks
Original language description
This article is focused on industrial networks and their security. An industrial network typically works with older devices that do not provide security at the level of today’s requirements. Even protocols often do not support security at a sufficient level. It is necessary to deal with these security issues due to digitization. It is therefore required to provide other techniques that will help with security. For this reason, it is possible to deploy additional elements that will provide additional security and ensure the monitoring of the network, such as the Intrusion Detection System. These systems recognize identified signatures and anomalies. Methods of detecting security incidents by detecting anomalies in network traffic are described. The proposed methods are focused on detecting DoS attacks in the industrial Modbus protocol and operations performed outside the standard interval in the Distributed Network Protocol 3. The functionality of the performed methods is tested in the IDS system Zeek.
Czech name
—
Czech description
—
Classification
Type
D - Article in proceedings
CEP classification
—
OECD FORD branch
20203 - Telecommunications
Result continuities
Project
<a href="/en/project/VI20192022132" target="_blank" >VI20192022132: Cyber-arena for research, testing and education in cybersecurity</a><br>
Continuities
P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)
Others
Publication year
2020
Confidentiality
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Article name in the collection
4th Cyber Security in Networking Conference
ISBN
978-0-7381-4292-0
ISSN
—
e-ISSN
—
Number of pages
3
Pages from-to
1-3
Publisher name
Neuveden
Place of publication
Neuveden
Event location
Lausanne
Event date
Oct 21, 2020
Type of event by nationality
WRD - Celosvětová akce
UT code for WoS article
—