Two-tier anomaly detection based on traffic profiling of the home automation system

Gajewski, Mariusz; Batalla, Jordi; LEVİ, ALBERT; TOĞAY, CENGİZ; Mavromoustakis, Constandinos; Mastorakis, George

doi:10.1016/j.comnet.2019.04.013

Two-tier anomaly detection based on traffic profiling of the home automation system

Atıf İçin Kopyala

Gajewski M., Batalla J. M., LEVİ A., TOĞAY C., Mavromoustakis C. X., Mastorakis G.

COMPUTER NETWORKS, cilt.158, ss.46-60, 2019 (SCI-Expanded)

Yayın Türü: Makale / Tam Makale
Cilt numarası: 158
Basım Tarihi: 2019
Doi Numarası: 10.1016/j.comnet.2019.04.013
Dergi Adı: COMPUTER NETWORKS
Derginin Tarandığı İndeksler: Science Citation Index Expanded (SCI-EXPANDED), Scopus
Sayfa Sayıları: ss.46-60
Bursa Uludağ Üniversitesi Adresli: Evet

Özet

Smart building equipment and automation systems often become a target of attacks and are used for attacking other targets located out of the Home Area Network. Attacks are often related to changes in traffic volume, disturbed packet flow or excessive energy consumption. Their symptoms can be recognized and interpreted locally, using software agent at Home Gateway. Although anomalies are detected locally at the Home Gateway, they can be exploited globally. Thus, it is significantly important to detect global attack attempts through anomalies correlation.