Publication detail

Convolutional Neural Network-Based Classification of Secured IEC 104 Traffic in Energy Systems

BOHAČÍK, A. HOLASOVÁ, E. FUJDIAK, R. RACKA, J.

Original Title

Convolutional Neural Network-Based Classification of Secured IEC 104 Traffic in Energy Systems

Type

conference paper

Language

English

Original Abstract

This paper focuses on the classification of secure IEC 104 protocol traffic in energy systems using a specific convolutional neural network model. Secure communication of the IEC 104 protocol was used to train the network. The data were obtained using a special network traffic simulator and from an energy testbed. In order to analyze secure communication, a classifier was developed to identify the individual operating states of the communicating station. In this article, we focused on the classification of IEC 104 protocol communication with TLS security. The classifier consisted of a convolutional neural network with a defined two-dimensional input matrix. The matrix was composed of the information from five consecutive packets. The information was constructed from the interarrival time between packets, the length of TLS encrypted application data, and the encrypted application data up to 64B in size. To obtain enough data to train the convolutional network, a simulator of characteristic messages for each state was developed. The classifier was trained to accurately classify the ”Normal operation” and ”Short circuit” states of the station, achieving a probability exceeding 90% for the distinct data flow. However, in the case of other operating states characterized by subtle differences, misclassification occurred between two states sharing similar characteristics.

Keywords

Convolutional Networks; Energy Protocol; IEC 60870-5-104; IEC 62351; TLS; Traffic Classification

Authors

BOHAČÍK, A.; HOLASOVÁ, E.; FUJDIAK, R.; RACKA, J.

Released

3. 12. 2023

Publisher

ACM

Location

New York, NY, USA

ISBN

979-8-4007-0796-4

Book

Proceedings of the 2023 13th International Conference on Communication and Network Security

Edition

1

Pages from

159

Pages to

165

Pages count

7

URL

BibTex

@inproceedings{BUT185767,
  author="Antonín {Bohačík} and Eva {Holasová} and Radek {Fujdiak} and Jan {Racka}",
  title="Convolutional Neural Network-Based Classification of Secured IEC 104 Traffic in Energy Systems",
  booktitle="Proceedings of the 2023 13th International Conference on Communication and Network Security",
  year="2023",
  series="1",
  pages="159--165",
  publisher="ACM",
  address="New York, NY, USA",
  doi="10.1145/3638782.3638806",
  isbn="979-8-4007-0796-4",
  url="https://doi.org/10.1145/3638782.3638806"
}