A Dynamic Cybersecurity Protection Method based on Software-defined Networking for Industrial Control Systems

Submitted by aekwall on Mon, 05/04/2020 - 11:21am

Title	A Dynamic Cybersecurity Protection Method based on Software-defined Networking for Industrial Control Systems
Publication Type	Conference Paper
Year of Publication	2019
Authors	Wang, Fang, Qi, Weimin, Qian, Tonghui
Conference Name	2019 Chinese Automation Congress (CAC)
Keywords	anomaly detection, closed-loop security control, composability, computer security, control engineering computing, control systems, cybersecurity protection, dynamic cybersecurity protection method, ICs, industrial control, industrial control system, industrial control systems, Intrusion detection, IP networks, moving target defense, Networked Control Systems Security, Predictive Metrics, protection requirement analysis, pubcrawl, Real-time intrusion detection, Real-time Systems, Resiliency, SDN, security of data, security response measures, Software Defined Network, software defined networking, software-defined networking
Abstract	In this paper, a dynamic cybersecurity protection method based on software-defined networking (SDN) is proposed, according to the protection requirement analysis for industrial control systems (ICSs). This method can execute security response measures by SDN, such as isolation, redirection etc., based on the real-time intrusion detection results, forming a detecting-responding closed-loop security control. In addition, moving target defense (MTD) concept is introduced to the protection for ICSs, where topology transformation and IP/port hopping are realized by SDN, which can confuse and deceive the attackers and prevent attacks at the beginning, protection ICSs in an active manner. The simulation results verify the feasibility of the proposed method.
DOI	10.1109/CAC48633.2019.8996244
Citation Key	wang_dynamic_2019

Groups:

Science of Security VO