Industrial Control System Intrusion Detection Based on Feature Selection and Temporal Convolutional Network

被引：0

作者：

Shi L. ^{[1
,2
]}

Hou H. ^{[1
]}

Xu X. ^{[2
]}

Xu H. ^{[1
]}

Chen H. ^{[3
]}

机构：

[1] School of Computer Sci. and Technol., China Univ. of Petroleum (East China), Qingdao

[2] School of Oceanography and Space Info., China Univ. of Petroleum (East China), Qingdao

[3] School of Control Sci. and Eng., China Univ. of Petroleum (East China), Qingdao

来源：

Gongcheng Kexue Yu Jishu/Advanced Engineering Sciences | 2022年 / 54卷 / 06期

关键词：

feature selection; industrial control system; intrusion detection; temporal convolutional network; transfer learning;

D O I：

10.15961/j.jsuese.202100984

中图分类号：

学科分类号：

摘要：

Aiming at the problem of feature redundancy in industrial control system traffic data and the poor detection ability of deep learning models for small-scale data sets, an industrial control system intrusion detection model based on feature selection and temporal convolutional networks was proposed. First, the abnormal features and sample imbalance data of the source domain dataset were processed to improve the quality of the source domain dataset. Secondly, in view of the feature redundancy of traffic data, a IGR–PCA feature selection algorithm was constructed by using the information gain rate and principal component analysis method, and the optimal feature subset was selected to achieve data dimensionality reduction. Then, according to the time series characteristics of industrial control system traffic data, the excellent processing ability of temporal convolution network (TCN) for time series data was used to construct a source domain temporal convolution network pretrained model on a large-scale source domain data set. Finally, combined with the transfer learning (TL) fine-tuning strategy, the traffic characteristics of the source domain sample data were obtained on a small-scale target domain dataset, and the target domain TCN–TL model was constructed. The experimental test was carried out using the public industrial control system data set. The experimental results showed that compared with other methods, the proposed method can reduce the data dimension and reduce the calculation amount while still having a superior detection effect. The model proposed in this paper has achieved good detection results on both large-scale source domain data sets and small-scale target domain data sets. In the target domain, the transfer learning fine-tuning strategy can be used to learn the knowledge in the source domain, and the detection accuracy rate is 99.06%. In the training time comparison, the proposed model consumes less training time. Meanwhile, it also has better generalization ability and can better protect the security of industrial control systems. © 2022 Editorial Department of Journal of Sichuan University. All rights reserved.

引用

页码：238 / 247

页数：9

共 27 条

[1] An Yang, Limin Sun, Wang Xiaoshan, Et al., Intrusion detection techniques for industrial control systems[J], Journal of Computer Research and Development, 53, 9, pp. 2039-2054, (2016)
[2] O'Mahony N, Campbell S, Carvalho A, Et al., Deep learning vs.traditional computer vision[M], CVC 2019:Advances in Computer Vision, pp. 128-144, (2020)
[3] Jian Guo, He He, Tong He, Et al., GluonCV and GluonNLP: Deep learning in computer vision and natural language processing[J], Journal of Machine Learning Research, 21, 23, pp. 1-7, (2020)
[4] Zixing Zhang, Geiger J, Pohjalainen J, Et al., Deep learning for environmentally robust speech recognition[J], ACM Transactions on Intelligent Systems and Technology, 9, 5, pp. 1-28, (2018)
[5] Junjiao Liu, Yin Libo, Hu Yan, Et al., A novel intrusion detection algorithm for industrial control systems based on CNN and process state transition[C], Proceedings of the 2018 IEEE 37th International Performance Computing and Communications Conference, pp. 1-8, (2018)
[6] Mirza A H, Cosan S., Computer network intrusion detection using sequential LSTM Neural Networks autoencoders[C], Proceedings of the 2018 26th Signal Processing and Communications Applications Conference(SIU), pp. 1-4, (2018)
[7] Leyi Shi, Hongqiang Zhu, Liu Yihao, Et al., Intrusion detection of industrial control system based on correlation information entropy and CNN–BiLSTM[J], Journal of Computer Research and Development, 56, 11, pp. 2330-2338, (2019)
[8] Chawla A, Lee B, Fallon S, Et al., Host based intrusion detection system with combined CNN/RNN model[M], Joint European Conference on Machine Learning and Knowledge Discovery in Databases, pp. 149-158, (2018)
[9] Yan Yu, Qi Lin, Wang Jie, Et al., A network intrusion detection method based on stacked autoencoder and LSTM[C], Proceedings of the 2020 IEEE International Conference on Communications(ICC 2020), pp. 1-6, (2020)
[10] Mathew A, Mathew J, Govind M, Et al., An improved transfer learning approach for intrusion detection[J], Procedia Computer Science, 115, pp. 251-257, (2017)

← 1 2 3 →