A new method for detecting hacker attacks makes it 1300 times faster. Especially for this, researchers use “white noise”.
Researchers have introduced a new technique that prevents data capture during transmission. “Considering security measures in modern industrial control systems, we realized that there is no way to protect information in real time”, said Zhen Song, a researcher at Siemens Corporation.
Part of the reason is that traditional encryption methods do not take time into account. “In addition, traditional encryption algorithms are not fast enough for industrial connections, where the allowable delay is much less than 1 millisecond. Often, processing a small amount of data with traditional encryption algorithms requires more than 100 milliseconds, ”the researchers added.
The new method allows you to transmit data in real time over an unencrypted channel. But at the same time, a signal similar to “white noise” is transmitted through the same channel. At the other end, engineers monitor any noise disturbance that may indicate that a hacker attack is occurring.
“If attackers slightly change or delay the channel signal in real time, the algorithm will detect this and immediately raise an alarm”, said Song.
Tests have shown that this approach allows you to quickly detect attacks. It can be from 32 to 1.3 thousand times faster than traditional encryption algorithms.