Advisor(s) - Committee Chair
Mostafa Mostafa, Uta Ziegler, Ahonghang Xia
Department of Computer Science
Master of Science
The use of Supervisory Control and Data Acquisition (SCADA) Distributed Control Systems (DCS) in industrial infrastructures has been rapidly growing. SCADA networks, being considerably sophisticated, already have much vulnerability. Many ways have been introduced to avoid those vulnerabilities. However, with introducing the usage of Internet as a communication medium, new vulnerability risks of transferring data have evolved. Those risks have been approached by many techniques involving intrusion detection. Most of the existing security systems used for SCADA networks are based upon notorious attacks signatures, but these detection methods lack protection against unknown attacks. In an attempt to complete the missing parts of the puzzle of vulnerability, we introduce a new approach. The new approach, uses anomaly intrusion detection through the DNP3 protocol. The method used integrates the analysis of traffic behavior over time and detecting anomalies within this behavior.
Computer Sciences | Physical Sciences and Mathematics
El Zifzaf, Amr, "A DNP3 Protocol-Based Anomaly Intrusion Detection Model to Enhance the Security of the SCADA Network Infrastructure" (2008). Masters Theses & Specialist Projects. Paper 3430.