I. Zikratov, Victoria M. Korzhuk, Ilya Shilov, Alexey Gvozdev
{"title":"无线传感器网络攻击检测特征空间的形式化","authors":"I. Zikratov, Victoria M. Korzhuk, Ilya Shilov, Alexey Gvozdev","doi":"10.23919/FRUCT.2017.8071358","DOIUrl":null,"url":null,"abstract":"The article describes the formalization of the feature space in order to detect abnormal behaviour of nodes in wireless sensor network using statistical methods. The main methods of destructive impact on the infrastructure of wireless sensor networks based on ZigBee Protocol stack are considered. Special attention is paid to attacks on integrity and availability, which theoretically can be detected using the methods of machine learning and mathematical statistics. On the basis of standards and specifications, as well as considered attacks, the space of more than 50 features is developed. Using the methods of Shannon, Kullback and accumulated frequencies, informative value of formalized signs was evaluated. Conclusions about the existing dependencies between the information content of features, the statistics collection period and sample size used to calculate the information content are drawn. Received the results can be used as a basis for further evaluation of the most suitable characteristics for the classification of attacks depending on the network characteristics. In the future the main aim of the study is to build an intrusion detection system that uses statistics of the interactions for a certain period of time as a source of information about the system.","PeriodicalId":114353,"journal":{"name":"2017 20th Conference of Open Innovations Association (FRUCT)","volume":"7 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-04-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Formalization of the feature space for detection of attacks on wireless sensor networks\",\"authors\":\"I. Zikratov, Victoria M. Korzhuk, Ilya Shilov, Alexey Gvozdev\",\"doi\":\"10.23919/FRUCT.2017.8071358\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The article describes the formalization of the feature space in order to detect abnormal behaviour of nodes in wireless sensor network using statistical methods. The main methods of destructive impact on the infrastructure of wireless sensor networks based on ZigBee Protocol stack are considered. Special attention is paid to attacks on integrity and availability, which theoretically can be detected using the methods of machine learning and mathematical statistics. On the basis of standards and specifications, as well as considered attacks, the space of more than 50 features is developed. Using the methods of Shannon, Kullback and accumulated frequencies, informative value of formalized signs was evaluated. Conclusions about the existing dependencies between the information content of features, the statistics collection period and sample size used to calculate the information content are drawn. Received the results can be used as a basis for further evaluation of the most suitable characteristics for the classification of attacks depending on the network characteristics. In the future the main aim of the study is to build an intrusion detection system that uses statistics of the interactions for a certain period of time as a source of information about the system.\",\"PeriodicalId\":114353,\"journal\":{\"name\":\"2017 20th Conference of Open Innovations Association (FRUCT)\",\"volume\":\"7 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-04-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 20th Conference of Open Innovations Association (FRUCT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.23919/FRUCT.2017.8071358\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 20th Conference of Open Innovations Association (FRUCT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23919/FRUCT.2017.8071358","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Formalization of the feature space for detection of attacks on wireless sensor networks
The article describes the formalization of the feature space in order to detect abnormal behaviour of nodes in wireless sensor network using statistical methods. The main methods of destructive impact on the infrastructure of wireless sensor networks based on ZigBee Protocol stack are considered. Special attention is paid to attacks on integrity and availability, which theoretically can be detected using the methods of machine learning and mathematical statistics. On the basis of standards and specifications, as well as considered attacks, the space of more than 50 features is developed. Using the methods of Shannon, Kullback and accumulated frequencies, informative value of formalized signs was evaluated. Conclusions about the existing dependencies between the information content of features, the statistics collection period and sample size used to calculate the information content are drawn. Received the results can be used as a basis for further evaluation of the most suitable characteristics for the classification of attacks depending on the network characteristics. In the future the main aim of the study is to build an intrusion detection system that uses statistics of the interactions for a certain period of time as a source of information about the system.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
