AI Article Synopsis
- - The paper introduces a new approach for monitoring network packets to identify anomalies in industrial control systems (ICSs) by aggregating packets of the same flow to generate new features.
- - It utilizes a deep neural network (DNN) enhanced with multi-attention and residual blocks to effectively highlight key features and address issues like gradient vanishing and local minima during training.
- - The performance of this method is assessed using the Electra Modbus dataset and benchmarks against other techniques through metrics like precision, recall, and F1-score, demonstrating its superiority.
Article Abstract
This paper proposes a novel method monitoring network packets to classify anomalies in industrial control systems (ICSs). The proposed method combines different mechanisms. It is flow-based as it obtains new features through aggregating packets of the same flow. It then builds a deep neural network (DNN) with multi-attention blocks for spotting core features, and with residual blocks for avoiding the gradient vanishing problem. The DNN is trained with the Ranger (RAdam + Lookahead) optimizer to prevent the training from being stuck in local minima, and with the focal loss to address the data imbalance problem. The Electra Modbus dataset is used to evaluate the performance impacts of different mechanisms on the proposed method. The proposed method is compared with related methods in terms of the precision, recall, and F1-score to show its superiority.
Download full-text PDF |
Source |
|---|---|
| http://www.ncbi.nlm.nih.gov/pmc/articles/PMC9737659 | PMC |
| http://dx.doi.org/10.3390/s22239084 | DOI Listing |
Publication Analysis
Top Keywords
Similar Publications
Want AI Summaries of new PubMed Abstracts delivered to your In-box?
Enter search terms and have AI summaries delivered each week - change queries or unsubscribe any time!