Abstract

Automatic detection of the precise occurrence and duration of an attack reflected in time-series logs generated by cyber-physical systems is a challenging problem. This problem is exacerbated when performing this analysis using logs with limited system information. In a realistic scenario, multiple and differing attack methods may be employed in rapid succession. Modern or legacy systems operate in multiple modes and contain multiple devices recording a variety of continuous and categorical data streams. This work presents a non-parametric Bayesian framework that addresses these challenges using the sticky Hierarchical Dirichlet Process Hidden Markov Model (sHDP-HMM) . Additionally, we explore metrics for measuring the accuracy of the detected events, their timings and durations, and compare the computational efficiency of different inference implementations of the model. The efficacy of attack detection is demonstrated in two settings: an avionics testbed and a consumer robot.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Dual Sticky Hierarchical Dirichlet Process Hidden Markov Model and Its Application to Natural Language Description of Motions.
Weiming Hu ... Guodong Tian
IEEE transactions on pattern analysis and machine intelligence | VOL. 40
Weiming Hu, et. al.Weiming Hu ... Guodong Tian
25 Sep 2017
A Doubly Hierarchical Dirichlet Process Hidden Markov Model with a Non-Ergodic Structure
Amir H Harati Nejad Torbati ... Joseph Picone
IEEE/ACM Transactions on Audio, Speech, and Language Processing | VOL. 24
Amir H Harati Nejad Torbati, et. al.Amir H Harati Nejad Torbati ... Joseph Picone
01 Jan 2015
Video-based motion expertise analysis in simulation-based surgical training using hierarchical dirichlet process hidden markov model
Qiang Zhang ... Baoxin Li
-
Qiang Zhang, et. al.Qiang Zhang ... Baoxin Li
29 Nov 2011
Mining activities using sticky multimodal dual hierarchical Dirichlet process hidden Markov model
Guodong Tian ... Chunfeng Yuan
-
Guodong Tian, et. al.Guodong Tian ... Chunfeng Yuan
01 Sep 2013
View more papers

More From: Digital Threats: Research and Practice

Paper Title
Journal
Date
Author
Social Media Authentication and Combating Deepfakes using Semi-fragile Invisible Image Watermarking
Aakash Varma Nadimpalli ... Ajita Rattani
Digital Threats: Research and Practice | VOL. -
Aakash Varma Nadimpalli, et. al.Aakash Varma Nadimpalli ... Ajita Rattani
12 Oct 2024
Fuzzing and Symbolic Execution for Multipath Malware Tracing: Bridging Theory and Practice via Survey and Experiments
Marcus Botacin
Digital Threats: Research and Practice | VOL. -
Marcus BotacinMarcus Botacin
11 Oct 2024
Data Synthesis Is Going Mobile—On Community-Driven Dataset Generation for Android Devices
Markus Demmel ... Harald Baier
Digital Threats: Research and Practice | VOL. 5
Markus Demmel, et. al.Markus Demmel ... Harald Baier
30 Sep 2024
Does Cyber Insurance Promote Cyber Security Best Practice? An Analysis Based on Insurance Application Forms
Rodney Adriko ... Jason R C Nurse
Digital Threats: Research and Practice | VOL. 5
Rodney Adriko, et. al.Rodney Adriko ... Jason R C Nurse
30 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.