상세정보
학술대회
Abnormal Traffic Filtering Mechanism for Protecting ICS Networks
- 발행일
- 201601
- 출처
- International Conference on Advanced Communication Technology (ICACT) 2016, pp.436-440
- 협약과제
- 15MS4900, 사이버·물리시스템에서의 물리적 단방향 보안 게이트웨이 개발, 나중찬
- 초록
- The development of IT (Information Technology) has made access to control systems easier. However, because such advancement of control systems gave rise to many security vulnerabilities, the threat of cyber-attack is increasing as well. In order to respond these threats, we discusses the mechanism for protecting ICS (Industrial Control System) network. Most of all, since availability is the most critical factor in a control system, independent network security technology is required. In this viewpoint, this paper presents our industrial firewall system, named the IndusCAP-Gate (Industrial Cyber Attack Prevention-Gate) system, that fundamentally prevents unauthorized access to a control system. Our system applies access control filters of various levels. Most of all, the proposed system has an abnormal traffic filtering mechanism about Modbus and DNP3 protocol of the most widely used protocols in ICS network. Therefore, it facilitates the provision of security policy specific to each zone of the control system intranet.
- KSP 제안 키워드
- Abnormal traffic, Attack prevention, Critical factors, Cyber attacks, DNP3 protocol, ICS Networks, Independent network, Industrial Firewall, Industrial control systems(ICS), Information Technology, Network security technology