Kaspersky Industrial CyberSecurity for Networks implements storage of dictionary values for Network Anomaly Detection rules. You can use stored dictionary values in rules as the values of variables in SQL queries. Dictionaries are used to store dictionary values.
The application provides various types of dictionaries. Individual types of dictionaries are used to store IP addresses, port numbers, dates, and other data. Depending on the type of variable in the SQL query, you can select dictionaries of the corresponding type when creating or changing the settings of a Network Anomaly Detection rule.
You can manage dictionaries in the Settings → Dictionaries section. You can add up to 1000 dictionaries to the application. No more than 500 items can be added to each dictionary.
Users with the Administrator or Security Officer role can manage dictionaries.