Title :
Fuzzy logic based anomaly detection for embedded network security cyber sensor
Author :
Linda, Ondrej ; Manic, Milos ; Vollmer, Todd ; Wright, Jason
Author_Institution :
Univ. of Idaho, Idaho Falls, ID, USA
Abstract :
Resiliency and security in critical infrastructure control systems in the modern world of cyber terrorism constitute a relevant concern. Developing a network security system specifically tailored to the requirements of such critical assets is of a primary importance. This paper proposes a novel learning algorithm for anomaly based network security cyber sensor together with its hardware implementation. The presented learning algorithm constructs a fuzzy logic rule base modeling the normal network behavior. Individual fuzzy rules are extracted directly from the stream of incoming packets using an online clustering algorithm. This learning algorithm was specifically developed to comply with the constrained computational requirements of low-cost embedded network security cyber sensors. The performance of the system was evaluated on a set of network data recorded from an experimental test-bed mimicking the environment of a critical infrastructure control system.
Keywords :
computer network security; critical infrastructures; fuzzy logic; intelligent sensors; learning (artificial intelligence); pattern clustering; anomaly detection; critical infrastructure control system; cyber terrorism; embedded network security cyber sensor; fuzzy logic rule base; learning algorithm; online clustering algorithm; Artificial neural networks; Clustering algorithms; Control systems; Feature extraction; Fuzzy logic; Hardware; Security; Anomaly Detection; Cyber Sensor; Embedded Systems; Fuzzy Logic System; Online Clustering;
Conference_Titel :
Computational Intelligence in Cyber Security (CICS), 2011 IEEE Symposium on
Conference_Location :
Paris
Print_ISBN :
978-1-4244-9905-2
DOI :
10.1109/CICYBS.2011.5949392
