Publication
Actively detecting multiscale flooding attacks & attack volumes in resource-constrained ICPS
| dc.contributor.author | Zahid, Farzana | |
| dc.contributor.author | Kuo, Matthew M.Y. | |
| dc.contributor.author | Sinha, Roopak | |
| dc.contributor.author | Funchal, Gustavo Silva | |
| dc.contributor.author | Pedrosa, Tiago | |
| dc.contributor.author | Leitão, Paulo | |
| dc.date.accessioned | 2024-10-08T10:08:46Z | |
| dc.date.available | 2024-10-08T10:08:46Z | |
| dc.date.issued | 2024 | |
| dc.description.abstract | The significant growth in modern communication technologies has led to an increase in zero-day vulnerabilities that degrade the performance of cyber-physical systems (ICPS). Distributed denial of service (DDoS) attacks are one such threat that overwhelms a target with floods of packets, posing a severe risk to the normal operations of the ICPS. Current solutions to detect DDoS attacks are unsuitable for resource-constrained ICPS. This study proposes actively detecting multiscale flooding DDoS attacks in resource-constrained ICPS by analyzing network traffic in the frequency domain. A two-phased technique detects attack presence and attack volume. Both phases use a novel combination of light-weight and theoretically sound statistical methods. The effectiveness of the proposed technique is evaluated using mainstream metrics like true and false positive rates, accuracy, and precision using BOUN DDoS 2020 and CICDDoS 2019 datasets. An implementation of the proposed approach on a programmable logic controllers-based ICPS demonstrated improvements in resource usage and detection time compared to the existing state-of-the-art. | pt_PT |
| dc.description.version | info:eu-repo/semantics/publishedVersion | pt_PT |
| dc.identifier.citation | Zahid, Farzana; Kuo, Matthew M.Y.; Sinha, Roopak; Funchal, Gustavo Silva; Pedrosa, Tiago; Leitão, Paulo (2024). Actively detecting multiscale flooding attacks & attack volumes in resource-constrained ICPS. IEEE Transactions on Industrial Informatics. ISSN 1551-3203. p. 1-9 | pt_PT |
| dc.identifier.doi | 10.1109/TII.2024.3383520 | pt_PT |
| dc.identifier.issn | 1551-3203 | |
| dc.identifier.uri | http://hdl.handle.net/10198/30354 | |
| dc.language.iso | eng | pt_PT |
| dc.peerreviewed | yes | pt_PT |
| dc.publisher | IEEE | pt_PT |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/ | pt_PT |
| dc.subject | Computer crime | pt_PT |
| dc.subject | Denial-of-service attack | pt_PT |
| dc.subject | Discrete Fourier transform | pt_PT |
| dc.subject | Distributed denial of service (DDoS) | pt_PT |
| dc.subject | Electronic mail | pt_PT |
| dc.subject | Euclidean distance | pt_PT |
| dc.subject | Fast-entropy | pt_PT |
| dc.subject | Industrial cyber-physical system (ICPS) | pt_PT |
| dc.subject | Jaccard similarity | pt_PT |
| dc.subject | Market research | pt_PT |
| dc.subject | Resource-constrained | pt_PT |
| dc.subject | Security | pt_PT |
| dc.subject | Spectral analysis | pt_PT |
| dc.subject | Surveys | pt_PT |
| dc.title | Actively detecting multiscale flooding attacks & attack volumes in resource-constrained ICPS | pt_PT |
| dc.type | journal article | |
| dspace.entity.type | Publication | |
| oaire.citation.endPage | 9 | pt_PT |
| oaire.citation.startPage | 1 | pt_PT |
| oaire.citation.title | IEEE Transactions on Industrial Informatics | pt_PT |
| person.familyName | Funchal | |
| person.familyName | Pedrosa | |
| person.familyName | Leitão | |
| person.givenName | Gustavo Silva | |
| person.givenName | Tiago | |
| person.givenName | Paulo | |
| person.identifier | https://scholar.google.com/citations?user=eegfgI4AAAAJ&hl=pt-PT&oi=ao | |
| person.identifier | A-8390-2011 | |
| person.identifier.ciencia-id | 9416-F3F1-B3EF | |
| person.identifier.ciencia-id | B81E-0583-AEDF | |
| person.identifier.ciencia-id | 8316-8F13-DA71 | |
| person.identifier.orcid | 0000-0002-9691-9956 | |
| person.identifier.orcid | 0000-0003-4873-2705 | |
| person.identifier.orcid | 0000-0002-2151-7944 | |
| person.identifier.rid | G-2249-2011 | |
| person.identifier.scopus-author-id | 57216637887 | |
| person.identifier.scopus-author-id | 35318153700 | |
| person.identifier.scopus-author-id | 35584388900 | |
| rcaap.rights | openAccess | pt_PT |
| rcaap.type | article | pt_PT |
| relation.isAuthorOfPublication | 4db24fee-2be5-4feb-966f-acb5a7ff1a5c | |
| relation.isAuthorOfPublication | fee2835e-2230-4414-a58e-bcba895d1f0b | |
| relation.isAuthorOfPublication | 68d9eb25-ad4f-439b-aeb2-35e8708644cc | |
| relation.isAuthorOfPublication.latestForDiscovery | 4db24fee-2be5-4feb-966f-acb5a7ff1a5c |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- Actively_Detecting_Multiscale_Flooding.pdf
- Size:
- 1.45 MB
- Format:
- Adobe Portable Document Format
License bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- license.txt
- Size:
- 1.75 KB
- Format:
- Item-specific license agreed upon to submission
- Description: