Sudhina Kumar G K;Krishna Prakasha K;Balachandra Muniyal;Muttukrishnan Rajarajan
{"title":"可解释的联邦框架,用于增强联网车辆的安全性和隐私性,以应对高级持续威胁","authors":"Sudhina Kumar G K;Krishna Prakasha K;Balachandra Muniyal;Muttukrishnan Rajarajan","doi":"10.1109/OJVT.2025.3576366","DOIUrl":null,"url":null,"abstract":"The increasing adoption of autonomous and intelligent vehicles within ground transportation systems faces new security challenges. This shift from human-controlled operations opens up a broader attack surface for malicious players. As the interconnected Internet of Things (IoT) become ubiquitous in vehicles, they continuously generate and exchange a large amount of data. This tendency creates vulnerabilities that attackers can exploit using sophisticated techniques, such as Advanced Persistent Threats (APT). Detecting APTs in IoT-enabled vehicular environments is crucial. These APTs demand advanced detection mechanisms. The critical need for vehicular data privacy restricts traditional centralized Machine Learning (ML) approaches. Furthermore, the absence of publicly available APT datasets in the vehicular domain complicates model development and validation, creating a significant gap in cybersecurity capabilities for this evolving vehicular domain. This research proposes a novel Federated Deep Neural Network (FDNN) framework with a privacy-preserving technique to address these concerns. This study presents the key challenges in the APT detection phase and outlines the novel contributions to the body of knowledge. The research questions guiding the investigation are addressed and discussed. The features of the UNSW-NB15, Edge-IIoTset, and CSE-CIC-IDS2018 datasets are aligned with different stages of APT attacks. Using these datasets, the developed framework is analyzed and evaluated. For the mentioned datasets, the framework without privacy-preserving technique shows high APT detection accuracies of 97.32%, 96.81% and 98.06%, respectively. However, with the privacy-preserving technique, the framework shows 95.62%, 96.11% and 95.63% accuracies, respectively. All results with other evaluation metrics, such as Precision, False positive rate, F1 score etc., are tabulated. The developed framework is subjected to “Shapley Additive explanations (SHAP),” analysis to filter the considerably influential features in APT detection. This research establishes the efficacy of a novel framework for detecting APTs in distributed vehicular environments. The framework achieves superior performance by minimizing the number of data and reducing the number of features, which is demonstrated through rigorous experimentation on multiple benchmark datasets. The potential of the developed framework to detect the APTs in the cross-domain is discussed in future works.","PeriodicalId":34270,"journal":{"name":"IEEE Open Journal of Vehicular Technology","volume":"6 ","pages":"1438-1463"},"PeriodicalIF":4.8000,"publicationDate":"2025-06-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=11023215","citationCount":"0","resultStr":"{\"title\":\"Explainable Federated Framework for Enhanced Security and Privacy in Connected Vehicles Against Advanced Persistent Threats\",\"authors\":\"Sudhina Kumar G K;Krishna Prakasha K;Balachandra Muniyal;Muttukrishnan Rajarajan\",\"doi\":\"10.1109/OJVT.2025.3576366\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The increasing adoption of autonomous and intelligent vehicles within ground transportation systems faces new security challenges. This shift from human-controlled operations opens up a broader attack surface for malicious players. As the interconnected Internet of Things (IoT) become ubiquitous in vehicles, they continuously generate and exchange a large amount of data. This tendency creates vulnerabilities that attackers can exploit using sophisticated techniques, such as Advanced Persistent Threats (APT). Detecting APTs in IoT-enabled vehicular environments is crucial. These APTs demand advanced detection mechanisms. The critical need for vehicular data privacy restricts traditional centralized Machine Learning (ML) approaches. Furthermore, the absence of publicly available APT datasets in the vehicular domain complicates model development and validation, creating a significant gap in cybersecurity capabilities for this evolving vehicular domain. This research proposes a novel Federated Deep Neural Network (FDNN) framework with a privacy-preserving technique to address these concerns. This study presents the key challenges in the APT detection phase and outlines the novel contributions to the body of knowledge. The research questions guiding the investigation are addressed and discussed. The features of the UNSW-NB15, Edge-IIoTset, and CSE-CIC-IDS2018 datasets are aligned with different stages of APT attacks. Using these datasets, the developed framework is analyzed and evaluated. For the mentioned datasets, the framework without privacy-preserving technique shows high APT detection accuracies of 97.32%, 96.81% and 98.06%, respectively. However, with the privacy-preserving technique, the framework shows 95.62%, 96.11% and 95.63% accuracies, respectively. All results with other evaluation metrics, such as Precision, False positive rate, F1 score etc., are tabulated. The developed framework is subjected to “Shapley Additive explanations (SHAP),” analysis to filter the considerably influential features in APT detection. This research establishes the efficacy of a novel framework for detecting APTs in distributed vehicular environments. The framework achieves superior performance by minimizing the number of data and reducing the number of features, which is demonstrated through rigorous experimentation on multiple benchmark datasets. The potential of the developed framework to detect the APTs in the cross-domain is discussed in future works.\",\"PeriodicalId\":34270,\"journal\":{\"name\":\"IEEE Open Journal of Vehicular Technology\",\"volume\":\"6 \",\"pages\":\"1438-1463\"},\"PeriodicalIF\":4.8000,\"publicationDate\":\"2025-06-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=11023215\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Open Journal of Vehicular Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/11023215/\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"ENGINEERING, ELECTRICAL & ELECTRONIC\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Open Journal of Vehicular Technology","FirstCategoryId":"1085","ListUrlMain":"https://ieeexplore.ieee.org/document/11023215/","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, ELECTRICAL & ELECTRONIC","Score":null,"Total":0}
Explainable Federated Framework for Enhanced Security and Privacy in Connected Vehicles Against Advanced Persistent Threats
The increasing adoption of autonomous and intelligent vehicles within ground transportation systems faces new security challenges. This shift from human-controlled operations opens up a broader attack surface for malicious players. As the interconnected Internet of Things (IoT) become ubiquitous in vehicles, they continuously generate and exchange a large amount of data. This tendency creates vulnerabilities that attackers can exploit using sophisticated techniques, such as Advanced Persistent Threats (APT). Detecting APTs in IoT-enabled vehicular environments is crucial. These APTs demand advanced detection mechanisms. The critical need for vehicular data privacy restricts traditional centralized Machine Learning (ML) approaches. Furthermore, the absence of publicly available APT datasets in the vehicular domain complicates model development and validation, creating a significant gap in cybersecurity capabilities for this evolving vehicular domain. This research proposes a novel Federated Deep Neural Network (FDNN) framework with a privacy-preserving technique to address these concerns. This study presents the key challenges in the APT detection phase and outlines the novel contributions to the body of knowledge. The research questions guiding the investigation are addressed and discussed. The features of the UNSW-NB15, Edge-IIoTset, and CSE-CIC-IDS2018 datasets are aligned with different stages of APT attacks. Using these datasets, the developed framework is analyzed and evaluated. For the mentioned datasets, the framework without privacy-preserving technique shows high APT detection accuracies of 97.32%, 96.81% and 98.06%, respectively. However, with the privacy-preserving technique, the framework shows 95.62%, 96.11% and 95.63% accuracies, respectively. All results with other evaluation metrics, such as Precision, False positive rate, F1 score etc., are tabulated. The developed framework is subjected to “Shapley Additive explanations (SHAP),” analysis to filter the considerably influential features in APT detection. This research establishes the efficacy of a novel framework for detecting APTs in distributed vehicular environments. The framework achieves superior performance by minimizing the number of data and reducing the number of features, which is demonstrated through rigorous experimentation on multiple benchmark datasets. The potential of the developed framework to detect the APTs in the cross-domain is discussed in future works.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
