Research on risk identification of malicious threats to large-scale industrial control network equipment assets

Yunfan Yang; Hao Huang; Yi Tang; Yaoxin Pan; Weiwen Zheng

doi:10.1117/12.3052139

15 January 2025 Research on risk identification of malicious threats to large-scale industrial control network equipment assets

Yunfan Yang, Hao Huang, Yi Tang, Yaoxin Pan, Weiwen Zheng

Author Affiliations +

Proceedings Volume 13516, Fourth International Conference on Network Communication and Information Security (ICNCIS 2024); 135160R (2025) https://doi.org/10.1117/12.3052139
Event: International Conference on Network Communication and Information Security (ICNCIS 2024), 2024, Hangzhou, China

Abstract

In recent years, the industrial Internet has made great progress in the context of the country's vigorous promotion of new infrastructure, but the integration of industrial control systems and the Internet has also brought more network security risks to the industrial control industry. Existing industrial control network security protection technology still has many shortcomings, such as the intrusion detection model for stealth attack detection accuracy is not high, high interaction honeypot is difficult to adapt to a variety of industrial control scenarios and so on. In this paper, we design and implement a large-scale industrial control network equipment assets malicious threat risk identification, this research designs and implements the session flow intrusion detection according to the TCP/IP protocol stack model to parse each Ethernet frame, and extract the session flow from the packet through the session flow identification. A highly interactive honeypot is designed and implemented which logs the attacker's attacks at two levels. Finally, a plug-in industrial control protocol parsing framework is implemented. The experimental results show that this research provides effective malicious threat risk identification for industrial control network devices, which can detect and prevent potential security threats in time, safeguard the stable operation of these critical infrastructures, and prevent production accidents and social disorder caused by cyber-attacks.

(2025) Published by SPIE. Downloading of the abstract is permitted for personal use only.

Citation Download Citation

Yunfan Yang, Hao Huang, Yi Tang, Yaoxin Pan, and Weiwen Zheng "Research on risk identification of malicious threats to large-scale industrial control network equipment assets", Proc. SPIE 13516, Fourth International Conference on Network Communication and Information Security (ICNCIS 2024), 135160R (15 January 2025); https://doi.org/10.1117/12.3052139

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

;

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
7 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Control systems

Computer intrusion detection

Data modeling

Machine learning

Design

Network security

Feature extraction

Show All Keywords

Keywords/Phrases

Search In:

Publication Years