论文信息 - Obfuscation of Critical Infrastructure Network Traffic Using Fake Communication

Obfuscation of Critical Infrastructure Network Traffic Using Fake Communication

The tendency in cyber attacks has evolved from ones immediately causing abnormal operations to advanced attacks after information extraction by traffic sniffing. In particular, the unchanging characteristics of CIS networks are more susceptible to advanced attacks through information extraction. In this paper, we suggest the concept of an obfuscation method for CIS network traffic to interfere with information extraction. We investigated the characteristics of CIS traffic as found from real data. Based on our observations, we propose a method of creating fake communication to make the best use of surplus network bandwidth. We show that our method can vary the characteristics of a CIS network to prevent information extraction by sniffing.

Jeong-Han Yun | Woonyon Kim | Sungho Jeon

[1] Wenke Lee,et al. Polymorphic Blending Attacks , 2006, USENIX Security Symposium.

[2] Ling Liu,et al. Supporting anonymous location queries in mobile environments with privacygrid , 2008, WWW.

[3] Stamatis Karnouskos,et al. Architecting the next generation of service-based SCADA/DCS system of systems , 2011, IECON 2011 - 37th Annual Conference of the IEEE Industrial Electronics Society.

[4] Christof Störmann,et al. Cyber-Critical Infrastructure Protection Using Real-Time Payload-Based Anomaly Detection , 2009, CRITIS.

[5] Luigi V. Mancini,et al. Obfuscation of sensitive data in network flows , 2012, 2012 Proceedings IEEE INFOCOM.

[6] Brijesh Joshi,et al. Touching from a distance: website fingerprinting attacks and defenses , 2012, CCS.

[7] Doug Fisher,et al. SCADA: Supervisory Control and Data Acquisition , 2015 .