Loading...
Please wait, while we are loading the content...
Similar Documents
A Continuous Terminal Sliding-Mode Observer-Based Anomaly Detection Approach for Industrial Communication Networks
| Content Provider | MDPI |
|---|---|
| Author | Xu, Long Xiong, Wei Zhou, Minghao Chen, Lei |
| Copyright Year | 2022 |
| Description | Dynamic traffic monitoring is a critical part of industrial communication network cybersecurity, which can be used to analyze traffic behavior and identify anomalies. In this paper, industrial networks are modeled by a dynamic fluid-flow model of TCP behavior. The model can be described as a class of systems with unmeasurable states. In the system, anomalies and normal variants are represented by the queuing dynamics of additional traffic flow (ATF) and can be considered as a disturbance. The novel contributions are described as follows: (1) a novel continuous terminal sliding-mode observer (TSMO) is proposed for such systems to estimate the disturbance for traffic monitoring; (2) in TSMO, a novel output injection strategy is proposed using the finite-time stability theory to speed up convergence of the internal dynamics; and (3) a full-order sliding-mode-based mechanism is developed to generate a smooth output injection signal for real-time estimations, which is directly used for anomaly detection. To verify the effectiveness of the proposed approach, the real traffic profiles from the Center for Applied Internet Data Analysis (CAIDA) DDoS attack datasets are used. |
| Starting Page | 124 |
| e-ISSN | 20738994 |
| DOI | 10.3390/sym14010124 |
| Journal | Symmetry |
| Issue Number | 1 |
| Volume Number | 14 |
| Language | English |
| Publisher | MDPI |
| Publisher Date | 2022-01-10 |
| Access Restriction | Open |
| Subject Keyword | Symmetry Industrial Engineering Network Traffic Monitoring Sliding-mode Observers Industrial Switches Industrial Communication Network Tcp/ip Ddos Attacks Anomaly Detection |
| Content Type | Text |
| Resource Type | Article |
