Produção Nacional
A Method for Anomalies Detection in Real-Time Ethernet Data Traffic Applied to PROFINET
2017; Institute of Electrical and Electronics Engineers; Volume: 14; Issue: 5 Linguagem: Inglês
10.1109/tii.2017.2772082
ISSN1941-0050
AutoresGuilherme Serpa Sestito, Afonso Celso Turcato, André Luís Dias, Murilo Silveira Rocha, Maíra Martins da Silva, Paolo Ferrari, Dennis Brandão,
Tópico(s)Smart Grid Security and Resilience
ResumoThere are major discussions about the vulnerability of protocols based on real-time Ethernet (RTE) and techniques for detecting anomalies. Thus, this work proposes a methodology for detecting anomalies by optimizing the data extraction and by classifying traffic-related features. In order to cope with this proposal, an artificial neural network (ANN)-based classifier is trained using selected relevant features. These features are extracted using variable sized sliding window and selected according to their correlation with the other features and the expected output of the classifier. The number of relevant features can vary according to performance indicators of the classifier. The proposed methodology was exploited for identifying four different events of PROFINET networks. The performance of the ANN-based classifier was considered successful for all cases. This outcome suggests that the proposed methodology may be successful for anomalies detection in any PROFINET network. However, the application of the proposed methodology to other RTE protocol is foreseen.
Referência(s)