Visible to the public Biblio

Filters: Author is Wang, Bin  [Clear All Filters]
2020-05-04
Zou, Zhenwan, Chen, Jia, Hou, Yingsa, Song, Panpan, He, Ling, Yang, Huiting, Wang, Bin.  2019.  Design and Implementation of a New Intelligent Substation Network Security Defense System. 2019 IEEE 4th Advanced Information Technology, Electronic and Automation Control Conference (IAEAC). 1:2709–2713.
In order to enhance the network security protection level of intelligent substation, this paper puts forward a model of intelligent substation network security defense system through the analysis of intelligent substation network security risk and protection demand, and using example proved the feasibility and effectiveness of the defense system. It is intelligent substation network security protection provides a new solution.
2020-02-17
Zou, Zhenwan, Hou, Yingsa, Yang, Huiting, Li, Mingxuan, Wang, Bin, Guo, Qingrui.  2019.  Research and Implementation of Intelligent Substation Information Security Risk Assessment Tool. 2019 IEEE 8th Joint International Information Technology and Artificial Intelligence Conference (ITAIC). :1306–1310.

In order to improve the information security level of intelligent substation, this paper proposes an intelligent substation information security assessment tool through the research and analysis of intelligent substation information security risk and information security assessment method, and proves that the tool can effectively detect it. It is of great significance to carry out research on industrial control systems, especially intelligent substation information security.

2018-07-18
Xin, Xiaoshuai, Liu, Cancheng, Wang, Bin.  2017.  Real-Time Intrusion Detection Method Based on Bidirectional Access of Modbus/TCP Protocol. Proceedings of the 2017 International Conference on Cryptography, Security and Privacy. :102–106.

The Modbus/TCP protocol is commonly used in the industrial control systems for communications between the human-machine interface and the industrial controllers. This paper proposes a real-time intrusion detection method based on bidirectional access of the Modbus/TCP protocol. The method doesnt require key observation that Modbus/TCP traffic to and from master device or slave device is periodic. Anomaly detection can be realized in time by the method after checking only two packets. And even though invader modifies the legal function code to another legal one in the packet from master device to slave device, the method can also figure it out. The test results show that the presented method has traits of timeliness, low false positive rate and low false negative rate.