loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Ricardo Hormann 1 ; Daniel Bokelmann 2 and Frank Ortmeier 2

Affiliations: 1 Volkswagen AG, Wolfsburg, Germany ; 2 Otto-von-Guericke-University, Faculty of Computer Science, Magdeburg, Germany

Keyword(s): Industry 4.0, Cybersecurity, Industrial Networks, Self-Organizing Maps, Log4j.

Abstract: Concepts such as Industry 4.0 are challenging the IT security of Industrial Control Networks (ICN) due to growing connectivity with insecure networks, such as corporate networks. Vulnerable devices within the ICN need to be protected by monitoring tools such as Intrusion Detection Systems (IDS). These tools not only provide information on suspicious traffic data observed, but also assess the semantics of an attack. Given the large number of security events generated by these systems, security analysts may overlook important annotations. This work attempts to leverage semantic annotations in combination with traffic and temporal information, using unsupervised machine learning methods (Self-Organizing Maps), to facilitate processing in the Security Operation Center. Instead of handling individual security events, our approach provides groups of heterogeneous security events leading to prototypical scenarios and classified and reusable use cases that only need to be analyzed once. We e valuate our approach using a non-synthetic dataset generated on a shop floor in the automotive sector, focusing on security events related to the Log4j vulnerability. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.222.148.124

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Hormann, R.; Bokelmann, D. and Ortmeier, F. (2023). Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j. In Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS; ISBN 978-989-758-643-9; ISSN 2184-4976, SciTePress, pages 51-60. DOI: 10.5220/0011839900003482

@conference{iotbds23,
author={Ricardo Hormann. and Daniel Bokelmann. and Frank Ortmeier.},
title={Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j},
booktitle={Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS},
year={2023},
pages={51-60},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011839900003482},
isbn={978-989-758-643-9},
issn={2184-4976},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS
TI - Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j
SN - 978-989-758-643-9
IS - 2184-4976
AU - Hormann, R.
AU - Bokelmann, D.
AU - Ortmeier, F.
PY - 2023
SP - 51
EP - 60
DO - 10.5220/0011839900003482
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic