296
Asian Journal of Engineering, Sciences and Technology - Volume 10, Issue 1 2020
By Muhammad Faizan, Muhammad Abdul Jalil and Syed Nadeem Ahsan
Network intrusions are any unauthorized efforts to infiltrate a computer network. Industrial Control Systems are the consolidation of software and hardware connected to a network to manage control processes in industries. Supervisor Control and Data Acquisition or SCADA are common control systems that incorporate hardware and software tools providing an interface to control, detect, and process data in real-time. Detection and prevention systems against industrial intrusions have been important tools to protect and alert network administrators. Such tools also help against malicious traffic that attack critical infrastructures such as water facilities or power plants which would wreck significant damage to a country on a national level. In this paper, a new approach is proposed by generating rules to protect industrial control systems from external intrusions. The proposed approach demonstrates a method of intrusion detection by improving the two most popular NIDS/NIPS software i.e. Snort and Suricata. This is done by detecting and generating rules through the proposed algorithm that prevents READ and WRITE attacks on Industrial Control Systems.