A Two-level Intrusion Detection System for Industrial Control System Networks using P4

Ndonda, Gorby Kabasele; Sadre, Ramin

doi:10.14236/ewic/ics2018.4

Cited by 23 publications

(8 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Modbus/TCP oriented attack is a major type of control system intrusion. Ndona and Sadre [143] proposed a two-level intrusion detection system to efficient against Modbus/TCP oriented attacks with a small impact on communication latency. In [144], a new intrusion detection algorithm based on oneclass SVM was presented with advantages of fast and strong generalization ability, less support vector, simple mode, and great practical value.…”

Section: Discussionmentioning

confidence: 99%

A Survey on Smart Agriculture: Development Modes, Technologies, and Security and Privacy Challenges

Yang

Shu

Chen

et al. 2021

IEEE/CAA J. Autom. Sinica

279

View full text Add to dashboard Cite

With the deep combination of both modern information technology and traditional agriculture, the era of agriculture 4.0, which takes the form of smart agriculture, has come. Smart agriculture provides solutions for agricultural intelligence and automation. However, information security issues cannot be ignored with the development of agriculture brought by modern information technology. In this paper, three typical development modes of smart agriculture (precision agriculture, facility agriculture, and order agriculture) are presented. Then, 7 key technologies and 11 key applications are derived from the above modes. Based on the above technologies and applications, 6 security and privacy countermeasures (authentication and access control, privacy-preserving, blockchain-based solutions for data integrity, cryptography and key management, physical countermeasures, and intrusion detection systems) are summarized and discussed. Moreover, the security challenges of smart agriculture are analyzed and organized into two aspects: 1) agricultural production, and 2) information technology. Most current research projects have not taken agricultural equipment as potential security threats. Therefore, we did some additional experiments based on solar insecticidal lamps Internet of Things, and the results indicate that agricultural equipment has an impact on agricultural security. Finally, more technologies (5G communication, fog computing, Internet of Everything, renewable energy management system, software defined network, virtual reality, augmented reality, and cyber security datasets for smart agriculture) are described as the future research directions of smart agriculture.

show abstract

Section: Discussionmentioning

confidence: 99%

A Survey on Smart Agriculture: Development Modes, Technologies, and Security and Privacy Challenges

Yang

Shu

Chen

et al. 2021

IEEE/CAA J. Autom. Sinica

279

View full text Add to dashboard Cite

show abstract

“…Furthermore, Scholz et al [212,213] presented a scheme that defends against SYN flood attacks. Ndonda et al [214] implemented an intrusion detection system in P4 that whitelists and filters Modbus protocol packets in industrial control systems.…”

Section: ) Backgroundmentioning

confidence: 99%

An Exhaustive Survey on P4 Programmable Data Plane Switches: Taxonomy, Applications, Challenges, and Future Trends

2021

View full text Add to dashboard Cite

Traditionally, the data plane has been designed with fixed functions to forward packets using a small set of protocols. This closed-design paradigm has limited the capability of the switches to proprietary implementations which are hard-coded by vendors, inducing a lengthy, costly, and inflexible process. Recently, data plane programmability has attracted significant attention from both the research community and the industry, permitting operators and programmers in general to run customized packet processing functions. This open-design paradigm is paving the way for an unprecedented wave of innovation and experimentation by reducing the time of designing, testing, and adopting new protocols; enabling a customized, top-down approach to develop network applications; providing granular visibility of packet events defined by the programmer; reducing complexity and enhancing resource utilization of the programmable switches; and drastically improving the performance of applications that are offloaded to the data plane. Despite the impressive advantages of programmable data plane switches and their importance in modern networks, the literature has been missing a comprehensive survey. To this end, this paper provides a background encompassing an overview of the evolution of networks from legacy to programmable, describing the essentials of programmable switches, and summarizing their advantages over Softwaredefined Networking (SDN) and legacy devices. The paper then presents a unique, comprehensive taxonomy of applications developed with P4 language; surveying, classifying, and analyzing more than 200 articles; discussing challenges and considerations; and presenting future perspectives and open research issues.

show abstract

“…Their solution blocks users based on packet rate. Ndonda and Sadre [18] take the capabilities of P4 a step further, proposing a two-level Intrusion Detection System (IDS), which implements a flow and Modbus whitelist by leveraging P4, which is updated by a packet inspection application located at the SDN controller.…”

Section: A Data Plane Programming Solutionsmentioning

confidence: 99%

DNSxP: Enhancing data exfiltration protection through data plane programmability

Steadman

Scott-Hayward

2021

Computer Networks

View full text Add to dashboard Cite

A Two-level Intrusion Detection System for Industrial Control System Networks using P4

Cited by 23 publications

References 17 publications

A Survey on Smart Agriculture: Development Modes, Technologies, and Security and Privacy Challenges

A Survey on Smart Agriculture: Development Modes, Technologies, and Security and Privacy Challenges

An Exhaustive Survey on P4 Programmable Data Plane Switches: Taxonomy, Applications, Challenges, and Future Trends

DNSxP: Enhancing data exfiltration protection through data plane programmability

Contact Info

Product

Resources

About