DNP3 over TCP/IP 환경 전력 제어시스템에서의 상태추정 기반 침입 탐지 연구

Vol. 34, No. 4, pp. 615-627, 8월. 2024
10.13089/JKIISC.2024.34.4.615, Full Text:
Keywords: DNP3, Intrusion Detection System, State estimation, Energy Management System
Abstract

With the evolution of power systems and advancements in IT technology, there is an increasing demand to shift from serial-based communication to TCP/IP-based communication. However, TCP/IP communication entails various security threats, necessitating extensive consideration from an information security perspective. Security measures such as authentication and encryption cannot be rapidly implemented due to issues like the replacement of Remote Terminal Units (RTUs) and the performance requirements of encryption algorithms. This paper proposes a state estimation-based intrusion detection model to identify and effectively detect threats to power control systems in such a context. The proposed model, in addition to signature detection methods, verifies the validity of acquired data, enabling it to detect attacks that are difficult to identify using traditional methods, such as data tampering.

Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
최현호 and 이중희, "DNP3 over TCP/IP 환경 전력 제어시스템에서의 상태추정 기반 침입 탐지 연구," Journal of The Korea Institute of Information Security and Cryptology, vol. 34, no. 4, pp. 615-627, 2024. DOI: 10.13089/JKIISC.2024.34.4.615.

[ACM Style]
최현호 and 이중희. 2024. DNP3 over TCP/IP 환경 전력 제어시스템에서의 상태추정 기반 침입 탐지 연구. Journal of The Korea Institute of Information Security and Cryptology, 34, 4, (2024), 615-627. DOI: 10.13089/JKIISC.2024.34.4.615.