IDEAS home Printed from https://ideas.repec.org/a/spr/telsys/v65y2017i1d10.1007_s11235-016-0223-x.html
   My bibliography  Save this article

Content-based deep communication control for networked control system

Author

Listed:
  • Ming Wan

    (Shenyang Institute of Automation Chinese Academy of Sciences
    Key Laboratory of Networked Control System Chinese Academy of Sciences)

  • Wenli Shang

    (Shenyang Institute of Automation Chinese Academy of Sciences
    Key Laboratory of Networked Control System Chinese Academy of Sciences)

  • Linghe Kong

    (Shenyang Institute of Automation Chinese Academy of Sciences
    Shanghai Jiao Tong University)

  • Peng Zeng

    (Shenyang Institute of Automation Chinese Academy of Sciences
    Key Laboratory of Networked Control System Chinese Academy of Sciences)

Abstract

In smart cities, the networked control system plays a significant role in transportation systems, power stations or other critical infrastructures, and it is facing many security issues. From this point, this paper proposes a content-based deep communication control approach to guarantee its security. Based on the layer architecture, this approach analyzes the interactive content in depth according to different industrial communication protocols, and implements the access control between two distinct enclaves. For OPC Classic, we acquire the dynamic port provided by OPC server, and open a new connection belonging to this port; for Modbus/TCP, we not only analyze the ordinary function codes and addresses, but also check the register or coil values by using the multi-bit Trie-tree matching algorithm. Besides, the white-listing strategy is introduced to satisfy the special requirements of industrial communication. Our experiment results show that, on the one hand the proposed approach provides OPC and Modbus/TCP defenses in depth; on the other hand it has less than 1 ms forwarding latency and 0 packet loss rate when the rule number reaches 200, and all these meet the availability requirements in the networked control system. In particular, this approach has been successfully applied in several real-world petrochemical control systems.

Suggested Citation

  • Ming Wan & Wenli Shang & Linghe Kong & Peng Zeng, 2017. "Content-based deep communication control for networked control system," Telecommunication Systems: Modelling, Analysis, Design and Management, Springer, vol. 65(1), pages 155-168, May.
  • Handle: RePEc:spr:telsys:v:65:y:2017:i:1:d:10.1007_s11235-016-0223-x
    DOI: 10.1007/s11235-016-0223-x
    as

    Download full text from publisher

    File URL: http://link.springer.com/10.1007/s11235-016-0223-x
    File Function: Abstract
    Download Restriction: Access to the full text of the articles in this series is restricted.

    File URL: https://libkey.io/10.1007/s11235-016-0223-x?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:spr:telsys:v:65:y:2017:i:1:d:10.1007_s11235-016-0223-x. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Sonal Shukla or Springer Nature Abstracting and Indexing (email available below). General contact details of provider: http://www.springer.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.