Article Details

Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

Detecting Flooding Attacks in Communication Protocol of Industrial Control Systems

Author 1: Rajesh L
Author 2: Penke Satyanarayana

Download PDF

Digital Object Identifier (DOI) : 10.14569/IJACSA.2020.0110149

Article Published in International Journal of Advanced Computer Science and Applications(IJACSA), Volume 11 Issue 1, 2020.

Abstract: Industrial Control Systems (ICS) are normally using for monitoring and controlling various process plants like Oil & Gas refineries, Nuclear reactors, Power generation and transmission, various chemical plants etc., in the world. MODBUS is the most widely used communication protocol in these ICS systems, which is using for bi-directional data transfer of sensor data between data acquisition servers and Intelligent Electronic Devices (IED) like Programmable Logic Controllers (PLC) or Remote Telemetry Unit (RTU). The security of ICS systems is a major concern in safe and secure operations of these plants. This Modbus protocol is more vulnerable to cyber security attacks because security measures were not considered in mind at the time of protocol design. Denial-of-Service (DoS) attack or flooding attack is one of the prominent attacks for MODBUS, which affects the availability of the control system. In this paper, a new method was proposed, to detect user application-level flooding or DoS attacks and triggers alarm annunciator and displays suitable alarms in Supervisory Control and Data Acquisition system (SCADA) to draw the attention of administrators or engineers to take corrective action. This method detected highest percentage of attacks with less time compared to other methods. This method also considered all types of conditions, which triggers flooding attack in MODBUS protocol.

Keywords: Supervisory Control and Data Acquisition (SCADA); Remote Telemetry Unit (RTU); Programmable Logic Controllers (PLC); Communication Protocol; MODBUS; Industrial Control Systems (ICS)

Rajesh L and Penke Satyanarayana, “Detecting Flooding Attacks in Communication Protocol of Industrial Control Systems” International Journal of Advanced Computer Science and Applications(IJACSA), 11(1), 2020. http://dx.doi.org/10.14569/IJACSA.2020.0110149

@article{L2020,
title = {Detecting Flooding Attacks in Communication Protocol of Industrial Control Systems},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2020.0110149},
url = {http://dx.doi.org/10.14569/IJACSA.2020.0110149},
year = {2020},
publisher = {The Science and Information Organization},
volume = {11},
number = {1},
author = {Rajesh L and Penke Satyanarayana}
}

IJACSA

Upcoming Conferences

IntelliSys 2021

2-3 September 2021

Future Technologies Conference (FTC) 2021

28-29 October 2021

Future of Information and Communication Conference (FICC) 2022

3-4 March 2022

Computing Conference 2022

14-15 July 2022