Research on Industrial Control Anomaly Detection Based on FCM and SVM

Wenli Shang; Junrong Cui; Chunhe Song; Jianming Zhao; Peng Zeng

doi:10.1109/TrustCom/BigDataSE.2018.00042

2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)

Research on Industrial Control Anomaly Detection Based on FCM and SVM

Year: 2018, Pages: 218-222

DOI Bookmark: 10.1109/TrustCom/BigDataSE.2018.00042

Authors

Wenli Shang, Shenyang Inst. of Autom. Chinese, Univ. of Chinese Acad. of Sci., Shenyang, China
Junrong Cui, Sch. of Autom. & Electr. Eng., Shenyang Ligong Univ., Shenyang, China
Chunhe Song, Shenyang Inst. of Autom. Chinese, Univ. of Chinese Acad. of Sci., Shenyang, China
Jianming Zhao, Shenyang Inst. of Autom. Chinese, Univ. of Chinese Acad. of Sci., Shenyang, China
Peng Zeng, Shenyang Inst. of Autom. Chinese, Univ. of Chinese Acad. of Sci., Shenyang, China

Abstract

In order to solve the problem of virus and Trojan attacking the application layer network protocol of industrial control system, the rule of Modbus/TCP communication protocol is analyzed. An intrusion detection method based on clustering and support vector machine is proposed. The method combines unsupervised fuzzy C-means clustering (FCM) with supervised support vector (SVM) machine to calculate the distance between industrial control network communication data and cluster center. Partial data satisfying the threshold condition is further classified by support vector machine. Experimental results show that compared with the traditional intrusion detection method, this method can effectively reduce the training time and improve the classification accuracy without needing to know the class label in advance.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

Anomaly Detection Using LibSVM Training Tools
2008 International Conference on Information Security and Assurance (ISA '08)
Intrusion Detection of Industrial Control System Based on Modbus TCP Protocol
2017 IEEE 13th International Symposium on Autonomous Decentralized System (ISADS)
Intrusion Detection System Based on Improved SVM Incremental Learning
2009 International Conference on Artificial Intelligence and Computational Intelligence
A Retrofit Network Intrusion Detection System for MODBUS RTU and ASCII Industrial Control Systems
2012 45th Hawaii International Conference on System Sciences
Research on Intrusion Detection Method for Industrial Control Systems based on Improved APSO-MKBoost-C Algorithm
2022 IEEE 24th Int Conf on High Performance Computing & Communications; 8th Int Conf on Data Science & Systems; 20th Int Conf on Smart City; 8th Int Conf on Dependability in Sensor, Cloud & Big Data Systems & Application (HPCC/DSS/SmartCity/DependSys)
An Integrated Security Framework for OT System Based on Edge Computing
2022 IEEE 21st International Conference on Ubiquitous Computing and Communications (IUCC/CIT/DSCI/SmartCNS)
An Intrusion Detection Method Based on Hash Function for Industrial Cloud Data
2023 IEEE 29th International Conference on Parallel and Distributed Systems (ICPADS)
Research on Intrusion Detection Based on SVM Fusion Anomaly Data
2023 2nd International Conference on Sensing, Measurement, Communication and Internet of Things Technologies (SMC-IoT)
Machine Learning Methods for Anomaly Detection in Industrial Control Systems
2020 IEEE International Conference on Big Data (Big Data)
ROSE-BOX: An Approach for Intrusion Detection in Industrial Internet of Things
2024 IEEE International Symposium on Parallel and Distributed Processing with Applications (ISPA)

Research on Industrial Control Anomaly Detection Based on FCM and SVM

Authors

Abstract

Related Articles