A Basic Probability Assignment Methodology for Unsupervised Wireless Intrusion Detection
Ibrahim Ghafir,Konstantinos G. Kyriakopoulos,Francisco J. Aparicio-Navarro,Sangarapillai Lambotharan,Basil AsSadhan,Hamad Binsalleeh +5 more
29
TL;DR: A novel unsupervised methodology to dynamically generate the basic probability assignment (BPA) values, based on both the Gaussian and exponential probability density functions, the categorical probability mass function, and the local reachability density is proposed.
read more
Abstract: The broadcast nature of wireless local area networks has made them prone to several types of wireless injection attacks, such as Man-in-the-Middle (MitM) at the physical layer, deauthentication, and rogue access point attacks. The implementation of novel intrusion detection systems (IDSs) is fundamental to provide stronger protection against these wireless injection attacks. Since most attacks manifest themselves through different metrics, current IDSs should leverage a cross-layer approach to help toward improving the detection accuracy. The data fusion technique based on the Dempster–Shafer (D-S) theory has been proven to be an efficient technique to implement the cross-layer metric approach. However, the dynamic generation of the basic probability assignment (BPA) values used by D-S is still an open research problem. In this paper, we propose a novel unsupervised methodology to dynamically generate the BPA values, based on both the Gaussian and exponential probability density functions, the categorical probability mass function, and the local reachability density. Then, D-S is used to fuse the BPA values to classify whether the Wi-Fi frame is normal (i.e., non-malicious) or malicious. The proposed methodology provides 100% true positive rate (TPR) and 4.23% false positive rate (FPR) for the MitM attack and 100% TPR and 2.44% FPR for the deauthentication attack, which confirm the efficiency of the dynamic BPA generation methodology.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Hidden Markov Models and Alert Correlations for the Prediction of Advanced Persistent Threats
Ibrahim Ghafir,Konstantinos G. Kyriakopoulos,Sangarapillai Lambotharan,Francisco J. Aparicio-Navarro,Basil AsSadhan,Hamad Binsalleeh,Diab M. Diab +6 more
TL;DR: This paper proposes a novel intrusion detection system for APT detection and prediction that estimates the sequence of APT stages with a prediction accuracy of at least 91.80% and predicts the next step of the APT campaign with an accuracy of 66.50%, 92.70%, and 100% based on four correlated alerts.
Multi-Stage Attack Detection Using Contextual Information
Franciso J. Aparicio-Navarro,Konstantinos G. Kyriakopoulos,Ibrahim Ghafir,Sangarapillai Lambotharan,Jonathon A. Chambers +4 more
- 01 Jan 2018
TL;DR: A novel IDS that exploits contextual information in the form of Pattern-of-Life (PoL), and information related to expert judgment on the network behaviour, which improves the efficiency of the IDS by enhancing the detection rate of MSAs in real-time by 58%.
Traffic Data Classification to Detect Man-in-the-Middle Attacks in Industrial Control System
Haiyan Lan,Xiaodong Zhu,Jianguo Sun,Li Sizhao +3 more
- 01 Jan 2020
TL;DR: A method for classifying network traffic data in industrial control system to detect MITM attacks is proposed and can identify normal and abnonnal data packets that have been tampered by the MITM, and the classification accuracy is up to 99.74%.
29
Unsupervised GAN-Based Intrusion Detection System Using Temporal Convolutional Networks and Self-Attention
Paulo Freitas de Araujo-Filho,Mohamed Naili,Georges Kaddoum,Emmanuel Rossignol Thepie Fapi,Zhongwen Zhu +4 more
TL;DR: Wang et al. as mentioned in this paper investigated generative adversarial networks (GANs), a promising unsupervised approach to detecting attacks by implicitly modeling systems, and alternatives to LSTM networks to consider temporal dependencies among data.
26
Unsupervised Learning for Feature Selection: A Proposed Solution for Botnet Detection in 5G Networks
TL;DR: In this article , the authors proposed pattern-based feature selection methods as part of a machine learning (ML)-based botnet detection system, which uses Gini impurity and an unsupervised clustering method to select the most influential features automatically.
24
References
•Book
A mathematical theory of evidence
Glenn Shafer
- 01 Jan 1976
TL;DR: This book develops an alternative to the additive set functions and the rule of conditioning of the Bayesian theory: set functions that need only be what Choquet called "monotone of order of infinity." and Dempster's rule for combining such set functions.
14.6K
k-means++: the advantages of careful seeding
David Arthur,Sergei Vassilvitskii +1 more
- 07 Jan 2007
TL;DR: By augmenting k-means with a very simple, randomized seeding technique, this work obtains an algorithm that is Θ(logk)-competitive with the optimal clustering.
Introduction to Probability Models.
A. Csenki,Sheldon M. Ross +1 more
TL;DR: Download Introduction to Probability Models Sheldon M Download Pdf octave levenspiel solution manual pdf stochastic processes sheldon m ross pdf.
3.9K
A mathematical theory of evidence: introduction
Glenn Shafer
- 30 Jun 2020
TL;DR: This book constructs a new theory of epistemic probability, which draws on the work of A. P. Dempster but diverges from Depster's viewpoint by identifying his "lower probabilities" as epistemic probabilities and taking his rule for combining them as fundamental.
3.2K
Introduction to Probability Models.
John Hickey,Sheldon M. Ross +1 more
TL;DR: The nationwide network of sheldon m ross introduction to probability models solutions is dedicated to offering you the ideal service and will help you with this kind of manual.
2.7K