• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshop >Design, Development and Implementation of a Network Intrusion Detection Tool for Air Traffic Management Systems
【24h】

Design, Development and Implementation of a Network Intrusion Detection Tool for Air Traffic Management Systems

机译:空中交通管理系统网络入侵检测工具的设计,开发和实现

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

An Air Traffic Management (ATM) relies on a set of critical systems composed of control centers, sensors, communication means and radio navigation systems. These critical systems may be subject to different attacks and thus compromise their security. Indeed as there is a desire to open this system more and more outward and there is a gap between this world and the interconnected world, threats are increasing. The ATM system have particular characteristics as the fact that it is a very distributed system with a lot of real-time applications using proprietary and/or legacy protocols. Thus, the need to have an efficient Intrusion Detection System (IDS) is primordial in terms of reliability (a false negative rate as low as possible) and relevance (a lowest possible false-positive rate). The development of an IDS combining misuse detection (i.e., defining attack scenarios and finding traces of these scenarios in the traffic.) and anomaly detection (i.e., the construction of a reference model of the behavior of the supervised entity to which we will be able to compare the observed behavior) based on wavelet theory is a promising approach as they are already shown for this type of systems. The detection capability for such complex system could be enhanced using the specific characteristics of its exchanges, use them to enrich its normal signature and reduce the probability of false positive and false negatives. This paper describes the context and the state of the art of the current research direction of the authors with the aim to present the challenges and the future works that the student aims to perform in the next years.
机译:空中交通管理(ATM)依赖于一组关键系统,这些关键系统由控制中心,传感器,通信装置和无线电导航系统组成。这些关键系统可能会遭受不同的攻击,从而危及其安全性。确实,随着人们希望越来越开放这个系统,并且这个世界与相互联系的世界之间存在鸿沟,威胁也在增加。 ATM系统具有特殊的特征,因为它是一个非常分布式的系统,具有许多使用专有和/或旧式协议的实时应用程序。因此,就可靠性(误报率尽可能低)和相关性(可能的误报率最低)而言,具有有效的入侵检测系统(IDS)的需求是首要的。 IDS的开发结合了误用检测(即,定义攻击场景并在流量中找到这些场景的痕迹)和异常检测(即,我们将能够对受监管实体的行为进行参考模型的构建)比较小波理论的观测到的行为)是一种很有前途的方法,因为已经针对此类系统进行了展示。这种复杂系统的检测能力可以利用其交换的特定特性来增强,利用它们来丰富其正常签名并减少错误肯定和错误否定的可能性。本文描述了作者当前研究方向的背景和最新技术,旨在介绍学生在未来几年中将要完成的挑战和未来的工作。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号