Whitelisting for Critical IT-Based Infrastructure
スポンサーリンク
概要
- 論文の詳細を見る
Critical infrastructures are falsely believed to be safe when they are isolated from the Internet. However, the recent appearance of Stuxnet demonstrated that isolated networks are no longer safe. We observe that a better intrusion detection scheme can be established based on the unique features of critical infrastructures. In this paper, we propose a whitelist-based detection system. Network and application-level whitelists are proposed, which are combined to form a novel cross-layer whitelist. Through experiments, we confirm that the proposed whitelists can exactly detect attack packets, which cannot be achieved by existing schemes.
- The Institute of Electronics, Information and Communication Engineersの論文
- 2013-04-01
著者
-
Yoon Myungkeun
Kookmin Univ.
-
JANG YoungHwa
Kookmin University
-
MIN Byung-gil
the Attached Institute of Electrical and Telecommunication Research Institute
-
SHIN InCheol
the Attached Institute of Electrical and Telecommunication Research Institute
-
SEO Jungtaek
the Attached Institute of Electrical and Telecommunication Research Institute
関連論文
- Incrementally Updatable Bloom Filter and Network Application
- Detecting Long Duration Flows without False Negatives
- Whitelisting for Critical IT-Based Infrastructure
- Whitelisting for Critical IT-Based Infrastructure