IEC-61850 Protocol Analysis and Online Intrusion Detection System for SCADA Networks using Machine Learning

Date

2018-05-07

Authors

Patel, Shivam

Journal Title

Journal ISSN

Volume Title

Publisher

Abstract

Nowadays, industrial network security has become a major threat. In order to detect and prevent any type of attack on the industrial networks it is necessary to understand the communication protocols used by them. Hence, the first part of the report would review research done on IEC (International Electro Technical Commission) -61850 protocol employed in electric substation environment. In the second part of the project, an online intrusion detection system (OIDS) for SCADA networks which uses machine learning for detection is implemented. OIDS is a testbed which emulates a typical SCADA network and it consists of both attack and defense toolkits. SNORT is used for detecting the attack traffic based on the machine learning weights. The machine learning weights are obtained by training the collected traffic using the logistic regression algorithm.

Description

Keywords

Report

Citation