Industrial Control System (ICS) networks transmit control and monitoring data in critical environments such as smart grid. Cyber attacks on smart grid communication may cause fatal consequences on energy production, distribution, and eventually the lives of people. Since the attacks can be initiated from both the inside and outside of the network, traditional smart grid security tools like firewalls or Intrusion Detection Systems (IDS), which are typically deployed on the edge of the network, are not able to detect internal threats. For this reason, we also need to analyze behavior of internal ICS communication.
翻译:工业控制系统(ICS)网络在智能电网等关键环境中传输控制和监测数据,对智能电网通信的网络攻击可能对能源生产、分配并最终对人的生命造成致命后果,因为攻击可以从网络内外发起,通常部署在网络边缘的传统智能电网安全工具,如防火墙或入侵探测系统,无法发现内部威胁,因此,我们还需要分析ICS内部通信的行为。