TLP-IDS: A Two-layer Intrusion Detection System for Integrated Electronic Systems

Xiaoxia Liu, Daojing He, Yun Gao, Sencun Zhu, Sammy Chan

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

With the increasing applications of integrated electronic systems (IESs), especially in security critical application scenarios like satellites and aircraft, new vulnerabilities and attacks have emerged recently. To detect the attacks, we propose TLP-IDS, a real-time intrusion detection system (IDS). TLP-IDS includes two layers of detection modules, one based on time and sequence logic and the other based on historical data. For the modules in the first layer, periodic and aperiodic messages are distinguished based on variations of message intervals, and we learnd from the idea of Markov decision process (MDP) in reinforcement learning (RL) to automatically learn the logical relationship between sequences. In the second layer, an online sequence extreme learning machine (OS-ELM) method is deployed to fit the data and further combined with the Weibull distribution function for prediction and detection. To evaluate our system, we implement several attack scenarios on a test bed, and measure the detection performance. Experimental results show that our system can quickly and effectively detect various attacks.

Original languageEnglish (US)
Title of host publicationProceedings - 2020 International Symposium on Reliable Distributed Systems, SRDS 2020
PublisherIEEE Computer Society
Pages205-214
Number of pages10
ISBN (Electronic)9781728176260
DOIs
StatePublished - Sep 2020
Event39th International Symposium on Reliable Distributed Systems, SRDS 2020 - Virtual, Shanghai, China
Duration: Sep 21 2020Sep 24 2020

Publication series

NameProceedings of the IEEE Symposium on Reliable Distributed Systems
Volume2020-September
ISSN (Print)1060-9857

Conference

Conference39th International Symposium on Reliable Distributed Systems, SRDS 2020
CountryChina
CityVirtual, Shanghai
Period9/21/209/24/20

All Science Journal Classification (ASJC) codes

  • Software
  • Theoretical Computer Science
  • Hardware and Architecture
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'TLP-IDS: A Two-layer Intrusion Detection System for Integrated Electronic Systems'. Together they form a unique fingerprint.

Cite this