Whitelisting for Critical IT-Based Infrastructure
- Authors
- Jang, YoungHwa; Shin, InCheol; Min, Byung-gil; Seo, Jungtaek; Yoon, MyungKeun
- Issue Date
- Apr-2013
- Publisher
- IEICE-INST ELECTRONICS INFORMATION COMMUNICATIONS ENG
- Keywords
- traffic monitoring; network management; SCADA
- Citation
- IEICE TRANSACTIONS ON COMMUNICATIONS, v.E96B, no.4, pp.1070 - 1074
- Journal Title
- IEICE TRANSACTIONS ON COMMUNICATIONS
- Volume
- E96B
- Number
- 4
- Start Page
- 1070
- End Page
- 1074
- URI
- https://scholarworks.bwise.kr/gachon/handle/2020.sw.gachon/82139
- DOI
- 10.1587/transcom.E96.B.1070
- ISSN
- 0916-8516
- Abstract
- Critical infrastructures are falsely believed to be safe when they are isolated from the Internet. However, the recent appearance of Stuxnet demonstrated that isolated networks are no longer safe. We observe that a better intrusion detection scheme can be established based on the unique features of critical infrastructures. In this paper, we propose a whitelist-based detection system. Network and application-level whitelists are proposed, which are combined to form a novel cross-layer whitelist. Through experiments, we confirm that the proposed whitelists can exactly detect attack packets, which cannot be achieved by existing schemes.
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - IT융합대학 > 컴퓨터공학과 > 1. Journal Articles
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.