CN110719275B - 一种基于报文特征的电力终端漏洞攻击检测方法 - Google Patents
一种基于报文特征的电力终端漏洞攻击检测方法 Download PDFInfo
- Publication number
- CN110719275B CN110719275B CN201910941915.5A CN201910941915A CN110719275B CN 110719275 B CN110719275 B CN 110719275B CN 201910941915 A CN201910941915 A CN 201910941915A CN 110719275 B CN110719275 B CN 110719275B
- Authority
- CN
- China
- Prior art keywords
- power terminal
- sample
- attack
- address
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06N—COMPUTING ARRANGEMENTS BASED ON SPECIFIC COMPUTATIONAL MODELS
- G06N3/00—Computing arrangements based on biological models
- G06N3/02—Neural networks
- G06N3/08—Learning methods
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1433—Vulnerability analysis
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Artificial Intelligence (AREA)
- General Health & Medical Sciences (AREA)
- Biomedical Technology (AREA)
- Biophysics (AREA)
- Computational Linguistics (AREA)
- Data Mining & Analysis (AREA)
- Evolutionary Computation (AREA)
- Life Sciences & Earth Sciences (AREA)
- Molecular Biology (AREA)
- General Physics & Mathematics (AREA)
- Mathematical Physics (AREA)
- Software Systems (AREA)
- Health & Medical Sciences (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (5)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910941915.5A CN110719275B (zh) | 2019-09-30 | 2019-09-30 | 一种基于报文特征的电力终端漏洞攻击检测方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910941915.5A CN110719275B (zh) | 2019-09-30 | 2019-09-30 | 一种基于报文特征的电力终端漏洞攻击检测方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN110719275A CN110719275A (zh) | 2020-01-21 |
CN110719275B true CN110719275B (zh) | 2021-04-02 |
Family
ID=69211279
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910941915.5A Active CN110719275B (zh) | 2019-09-30 | 2019-09-30 | 一种基于报文特征的电力终端漏洞攻击检测方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN110719275B (zh) |
Families Citing this family (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111107092A (zh) * | 2019-12-23 | 2020-05-05 | 深圳供电局有限公司 | 基于随机森林算法攻击识别方法及储能协调控制装置 |
CN111182001A (zh) * | 2020-02-11 | 2020-05-19 | 深圳大学 | 基于卷积神经网络的分布式网络恶意攻击检测系统及方法 |
CN111314370B (zh) * | 2020-02-28 | 2022-07-29 | 杭州迪普科技股份有限公司 | 一种业务漏洞攻击行为的检测方法及装置 |
CN111131335B (zh) * | 2020-03-30 | 2020-08-28 | 腾讯科技(深圳)有限公司 | 基于人工智能的网络安全防护方法、装置、电子设备 |
CN111865947B (zh) * | 2020-07-08 | 2021-07-20 | 浙江大学 | 一种基于迁移学习的电力终端异常数据生成方法 |
CN112491849B (zh) * | 2020-11-18 | 2022-08-05 | 深圳供电局有限公司 | 一种基于流量特征的电力终端漏洞攻击防护方法 |
CN113268729B (zh) * | 2021-05-01 | 2023-07-28 | 群智未来人工智能科技研究院(无锡)有限公司 | 一种基于卷积神经网络的智能电网攻击定位方法 |
CN113468537B (zh) * | 2021-06-15 | 2024-04-09 | 江苏大学 | 一种基于改进自编码器的特征提取及漏洞利用攻击检测方法 |
CN113596020B (zh) * | 2021-07-28 | 2023-03-24 | 深圳供电局有限公司 | 一种智能电网虚假数据注入攻击漏洞检测方法 |
CN115103353A (zh) * | 2022-06-13 | 2022-09-23 | 厦门大学 | 智能终端入侵检测方法 |
CN115242556B (zh) * | 2022-09-22 | 2022-12-20 | 中国人民解放军战略支援部队航天工程大学 | 一种基于增量自编码器的网络异常检测方法 |
CN117235745B (zh) * | 2023-11-15 | 2024-05-10 | 北京东方森太科技发展有限公司 | 基于深度学习工控漏洞挖掘方法、系统、设备和存储介质 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10841333B2 (en) * | 2018-01-08 | 2020-11-17 | Sophos Limited | Malware detection using machine learning |
CN109460814B (zh) * | 2018-09-28 | 2020-11-03 | 浙江工业大学 | 一种具有防御对抗样本攻击功能的深度学习分类方法 |
CN109446635B (zh) * | 2018-10-23 | 2023-05-05 | 中国电力科学研究院有限公司 | 一种基于机器学习的电力工控攻击分类方法和系统 |
CN109922038A (zh) * | 2018-12-29 | 2019-06-21 | 中国电力科学研究院有限公司 | 一种用于电力终端的异常数据的检测方法及装置 |
-
2019
- 2019-09-30 CN CN201910941915.5A patent/CN110719275B/zh active Active
Also Published As
Publication number | Publication date |
---|---|
CN110719275A (zh) | 2020-01-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN110719275B (zh) | 一种基于报文特征的电力终端漏洞攻击检测方法 | |
CN110324316B (zh) | 一种基于多种机器学习算法的工控异常行为检测方法 | |
CN110909811B (zh) | 一种基于ocsvm的电网异常行为检测、分析方法与系统 | |
Lu et al. | Detecting new forms of network intrusion using genetic programming | |
Aickelin et al. | Immune system approaches to intrusion detection–a review | |
Le et al. | Data analytics on network traffic flows for botnet behaviour detection | |
Bao et al. | Iot device type identification using hybrid deep learning approach for increased iot security | |
CN110336827B (zh) | 一种基于异常字段定位的Modbus TCP协议模糊测试方法 | |
CN108737410B (zh) | 一种基于特征关联的有限知工业通信协议异常行为检测方法 | |
WO2016082284A1 (zh) | 基于OCSVM双轮廓模型的Modbus TCP通信行为异常检测方法 | |
CN111092862B (zh) | 一种用于对电网终端通信流量异常进行检测的方法及系统 | |
CN111598179B (zh) | 电力监控系统用户异常行为分析方法、存储介质和设备 | |
CN106357470B (zh) | 一种基于sdn控制器网络威胁快速感知方法 | |
CN105554016A (zh) | 网络攻击的处理方法和装置 | |
CN109347853B (zh) | 基于深度包解析的面向综合电子系统的异常检测方法 | |
US8903749B2 (en) | Method of identifying a protocol giving rise to a data flow | |
CN109688154B (zh) | 一种网络入侵检测模型建立方法及网络入侵检测方法 | |
CN110768946A (zh) | 一种基于布隆过滤器的工控网络入侵检测系统及方法 | |
CN116016198B (zh) | 一种工控网络拓扑安全评估方法、装置及计算机设备 | |
DeLooze | Attack characterization and intrusion detection using an ensemble of self-organizing maps | |
CN109639624A (zh) | 一种Modbus TCP协议模糊测试中畸形数据过滤方法 | |
Fenil et al. | Towards a secure software defined network with adaptive mitigation of dDoS attacks by machine learning approaches | |
Schuster et al. | Attack and fault detection in process control communication using unsupervised machine learning | |
CN104917757A (zh) | 一种事件触发式的mtd防护系统及方法 | |
CN112953956B (zh) | 一种基于主被动结合的反射放大器识别方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: Luohu District Shenzhen Shennan Road 518000 No. 4020 Guangdong provincial power dispatching center building Applicant after: SHENZHEN POWER SUPPLY BUREAU Co.,Ltd. Applicant after: ZHEJIANG University Address before: 310013 No. 866 Tong Road, Xihu District, Zhejiang, Hangzhou, Yuhang Applicant before: ZHEJIANG University Applicant before: China Southern Power Grid Research Institute Co.,Ltd. |
|
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: 510000 3 building, 3, 4, 5 and J1 building, 11 building, No. 11, Ke Xiang Road, Luogang District Science City, Guangzhou, Guangdong. Applicant after: China Southern Power Grid Research Institute Co.,Ltd. Applicant after: ZHEJIANG University Address before: 310013 No. 866 Tong Road, Xihu District, Zhejiang, Hangzhou, Yuhang Applicant before: ZHEJIANG University Applicant before: China Southern Power Grid Research Institute Co.,Ltd. |
|
CB02 | Change of applicant information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |