Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network
The massive use of information technology has brought certain security risks to the industrial production process. In recent years, cyber-physical attacks against industrial control systems have occurred frequently. Anomaly detection technology is an essential technical means to ensure the safety of...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Hindawi-Wiley
2019-01-01
|
| Series: | Security and Communication Networks |
| Online Access: | http://dx.doi.org/10.1155/2019/8124254 |
| id |
doaj-9ea060fa5cb542a485b886c455e044cf |
|---|---|
| record_format |
Article |
| spelling |
doaj-9ea060fa5cb542a485b886c455e044cf2020-11-25T01:25:04ZengHindawi-WileySecurity and Communication Networks1939-01141939-01222019-01-01201910.1155/2019/81242548124254Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural NetworkYingxu Lai0Jingwen Zhang1Zenghui Liu2College of Computer Science, Faculty of Information, Beijing University of Technology, Beijing 100124, ChinaCollege of Computer Science, Faculty of Information, Beijing University of Technology, Beijing 100124, ChinaInstitute of Electromechanical Engineering, Beijing Polytechnic, Beijing 100176, ChinaThe massive use of information technology has brought certain security risks to the industrial production process. In recent years, cyber-physical attacks against industrial control systems have occurred frequently. Anomaly detection technology is an essential technical means to ensure the safety of industrial control systems. Considering the shortcomings of traditional methods and to facilitate the timely analysis and location of anomalies, this study proposes a solution based on the deep learning method for industrial traffic anomaly detection and attack classification. We use a convolutional neural network deep learning representation model as the detection model. The original one-dimensional data are mapped using the feature mapping method to make them suitable for model processing. The deep learning method can automatically extract critical features and achieve accurate attack classification. We performed a model evaluation using real network attack data from a supervisory control and data acquisition (SCADA) system. The experimental results showed that the proposed method met the anomaly detection and attack classification needs of a SCADA system. The proposed method also promotes the application of deep learning methods in industrial anomaly detection.http://dx.doi.org/10.1155/2019/8124254 |
| collection |
DOAJ |
| language |
English |
| format |
Article |
| sources |
DOAJ |
| author |
Yingxu Lai Jingwen Zhang Zenghui Liu |
| spellingShingle |
Yingxu Lai Jingwen Zhang Zenghui Liu Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network Security and Communication Networks |
| author_facet |
Yingxu Lai Jingwen Zhang Zenghui Liu |
| author_sort |
Yingxu Lai |
| title |
Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network |
| title_short |
Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network |
| title_full |
Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network |
| title_fullStr |
Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network |
| title_full_unstemmed |
Industrial Anomaly Detection and Attack Classification Method Based on Convolutional Neural Network |
| title_sort |
industrial anomaly detection and attack classification method based on convolutional neural network |
| publisher |
Hindawi-Wiley |
| series |
Security and Communication Networks |
| issn |
1939-0114 1939-0122 |
| publishDate |
2019-01-01 |
| description |
The massive use of information technology has brought certain security risks to the industrial production process. In recent years, cyber-physical attacks against industrial control systems have occurred frequently. Anomaly detection technology is an essential technical means to ensure the safety of industrial control systems. Considering the shortcomings of traditional methods and to facilitate the timely analysis and location of anomalies, this study proposes a solution based on the deep learning method for industrial traffic anomaly detection and attack classification. We use a convolutional neural network deep learning representation model as the detection model. The original one-dimensional data are mapped using the feature mapping method to make them suitable for model processing. The deep learning method can automatically extract critical features and achieve accurate attack classification. We performed a model evaluation using real network attack data from a supervisory control and data acquisition (SCADA) system. The experimental results showed that the proposed method met the anomaly detection and attack classification needs of a SCADA system. The proposed method also promotes the application of deep learning methods in industrial anomaly detection. |
| url |
http://dx.doi.org/10.1155/2019/8124254 |
| work_keys_str_mv |
AT yingxulai industrialanomalydetectionandattackclassificationmethodbasedonconvolutionalneuralnetwork AT jingwenzhang industrialanomalydetectionandattackclassificationmethodbasedonconvolutionalneuralnetwork AT zenghuiliu industrialanomalydetectionandattackclassificationmethodbasedonconvolutionalneuralnetwork |
| _version_ |
1725115465068445696 |