###
DOI:10.15888/j.cnki.csa.006267
计算机系统应用英文版:2018,27(3):173-178
View/Add Comment     过刊浏览    高级检索     HTML
←前一篇   |   后一篇→
本文二维码信息
码上扫一扫!
电网工控系统流量异常检测的应用与算法改进
刘亚丽1,2, 孟令愚3, 丁云峰2
(1.中国科学院大学, 北京 100049;2.中国科学院 沈阳计算技术研究所, 沈阳 110168;3.国家电网公司东北分部, 沈阳 110180)
Application and Algorithm Improvement of Abnormal Traffic Detection in Smart Grid Industrial Control System
LIU Ya-Li1,2, MENG Ling-Yu3, DING Yun-Feng2
(1.University of Chinese Academy of Sciences, Beijing 100049, China;2.Shenyang Institute of Computing Technology, Chinese Academy of Sciences, Shenyang 110168, China;3.State Grid Corporation Northeast Branch, Shenyang 110180, China)
摘要
图/表
参考文献
相似文献
本文已被:浏览 1796次   下载 2880
Received:June 28, 2017    Revised:July 17, 2017
中文摘要: “两化融合”的工业控制网络的安全问题不断突显.电力作为国家重要基础设施,其电网工控系统的安全防护工作极其重要.本文根据电网工控系统中控制网的内防水平低且其安全监测和防护缺乏内部网络流量异常检测的现状,分析了电网工控系统的组成结构、网络安全需求及面临的威胁.提出了将流量异常检测技术应用于针对电网工控系统控制网的安全防护中,形成针对电网工控系统控制网的两级安全防护.然后研究了流量异常检测方法的分类和特点以及电网工控系统的网络流量数据特点,提出了基于熵的动态半监督K-means算法并辅以单类支持向量机对半监督K-means算法进行改进,为提升电力系统内防水平奠定基础.
中文关键词: 电网工控系统  安全防护  流量异常检测  动态半监督K-means  OCSVM
Abstract:The safety of industrial control network is becoming more prominent. Electric power is an important national infrastructure, so the safety protection of smart grid industrial control system is extremely important. In smart grid industrial control system, according to the status quo of the low internal protection level of the control network and the lack of internal network of anomaly traffic detection, this paper analyzes the composition of the industrial control system, the network security demand, and the threats faced by the smart grid industrial control system. It proposes to apply traffic anomaly detection technology to the security protection of smart grid industrial control system, which forms the two-level security protection. Then, the classification and characteristics of traffic anomaly detection methods and the characteristics of network traffic of smart grid industrial control system are studied. And it proposes a dynamic semi-supervised K-means algorithm based on entropy and OCSVM to improve the semi-supervised K-means algorithm for improving the internal protection level of the smart grid industrial control system.
keywords: smart grid industrial control system  security protection  traffic anomaly detection  dynamic semi-supervised K-means  OCSVM
文章编号:     中图分类号:    文献标志码:
基金项目:国科控股企业技术创新引导基金(2015XS0356)
Author NameAffiliationE-mail
LIU Ya-Li University of Chinese Academy of Sciences, Beijing 100049, China
Shenyang Institute of Computing Technology, Chinese Academy of Sciences, Shenyang 110168, China 		2352473711@qq.com 
MENG Ling-Yu State Grid Corporation Northeast Branch, Shenyang 110180, China  
DING Yun-Feng Shenyang Institute of Computing Technology, Chinese Academy of Sciences, Shenyang 110168, China  
Author NameAffiliationE-mail
LIU Ya-Li University of Chinese Academy of Sciences, Beijing 100049, China
Shenyang Institute of Computing Technology, Chinese Academy of Sciences, Shenyang 110168, China 		2352473711@qq.com 
MENG Ling-Yu State Grid Corporation Northeast Branch, Shenyang 110180, China  
DING Yun-Feng Shenyang Institute of Computing Technology, Chinese Academy of Sciences, Shenyang 110168, China  
引用文本:
刘亚丽,孟令愚,丁云峰.电网工控系统流量异常检测的应用与算法改进.计算机系统应用,2018,27(3):173-178
LIU Ya-Li,MENG Ling-Yu,DING Yun-Feng.Application and Algorithm Improvement of Abnormal Traffic Detection in Smart Grid Industrial Control System.COMPUTER SYSTEMS APPLICATIONS,2018,27(3):173-178

用微信扫一扫

Copyright:Institute of Software, Chinese Academy of Sciences
Postal address:4# South Fourth Street, Zhongguancun,Haidian, Beijing,Encoding:100190
Tel:010-62661041 Email:csa (a) iscas.ac.cn
Technical support:Beijing Qin Yun science and Technology Development Co., Ltd.