RAPID:基于实时异常的预防性入侵检测

Proceedings of the ACM Workshop on Wireless Security and Machine Learning Pub Date : 2019-05-15 DOI:10.1145/3324921.3328789

Keval Doshi, Mahsa Mozaffari, Y. Yilmaz

{"title":"RAPID:基于实时异常的预防性入侵检测","authors":"Keval Doshi, Mahsa Mozaffari, Y. Yilmaz","doi":"10.1145/3324921.3328789","DOIUrl":null,"url":null,"abstract":"Intrusion detection systems (IDSs) today face key limitations with respect to detection and prevention of challenging IoT-empowered attacks. We address these limitations by proposing a novel IDS called RAPID, which is based on an online scalable anomaly detection and localization approach. We show that the anomaly detection algorithm is asymptotically optimal under certain conditions, and comprehensively analyze its computational complexity. Considering a real dataset and an IoT testbed we demonstrate the use of RAPID in two different IoT-empowered cyber-attack scenarios, namely high-rate DDoS attacks and low-rate DDoS attacks. The experiment results show the quick and accurate detection and prevention performance of the proposed IDS.","PeriodicalId":435733,"journal":{"name":"Proceedings of the ACM Workshop on Wireless Security and Machine Learning","volume":"24 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"RAPID: Real-time Anomaly-based Preventive Intrusion Detection\",\"authors\":\"Keval Doshi, Mahsa Mozaffari, Y. Yilmaz\",\"doi\":\"10.1145/3324921.3328789\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Intrusion detection systems (IDSs) today face key limitations with respect to detection and prevention of challenging IoT-empowered attacks. We address these limitations by proposing a novel IDS called RAPID, which is based on an online scalable anomaly detection and localization approach. We show that the anomaly detection algorithm is asymptotically optimal under certain conditions, and comprehensively analyze its computational complexity. Considering a real dataset and an IoT testbed we demonstrate the use of RAPID in two different IoT-empowered cyber-attack scenarios, namely high-rate DDoS attacks and low-rate DDoS attacks. The experiment results show the quick and accurate detection and prevention performance of the proposed IDS.\",\"PeriodicalId\":435733,\"journal\":{\"name\":\"Proceedings of the ACM Workshop on Wireless Security and Machine Learning\",\"volume\":\"24 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-05-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the ACM Workshop on Wireless Security and Machine Learning\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3324921.3328789\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the ACM Workshop on Wireless Security and Machine Learning","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3324921.3328789","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

摘要

今天的入侵检测系统(ids)在检测和预防具有挑战性的物联网攻击方面面临着关键的限制。我们通过提出一种称为RAPID的新型IDS来解决这些限制，该IDS基于在线可扩展的异常检测和定位方法。证明了该异常检测算法在一定条件下是渐近最优的，并对其计算复杂度进行了综合分析。考虑到真实数据集和物联网测试平台，我们演示了在两种不同的物联网网络攻击场景中使用RAPID，即高速率DDoS攻击和低速率DDoS攻击。实验结果表明，该方法具有快速、准确的检测和防护性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

RAPID: Real-time Anomaly-based Preventive Intrusion Detection

Intrusion detection systems (IDSs) today face key limitations with respect to detection and prevention of challenging IoT-empowered attacks. We address these limitations by proposing a novel IDS called RAPID, which is based on an online scalable anomaly detection and localization approach. We show that the anomaly detection algorithm is asymptotically optimal under certain conditions, and comprehensively analyze its computational complexity. Considering a real dataset and an IoT testbed we demonstrate the use of RAPID in two different IoT-empowered cyber-attack scenarios, namely high-rate DDoS attacks and low-rate DDoS attacks. The experiment results show the quick and accurate detection and prevention performance of the proposed IDS.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the ACM Workshop on Wireless Security and Machine Learning

自引率

0.00%

发文量

期刊最新文献

RAPID: Real-time Anomaly-based Preventive Intrusion Detection Targeted Adversarial Examples Against RF Deep Classifiers Efficient Power Adaptation against Deep Learning Based Predictive Adversaries Detecting Drones Status via Encrypted Traffic Analysis Machine Learning-based Prevention of Battery-oriented Illegitimate Task Injection in Mobile Crowdsensing