lnu.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A robust approach for on-line and off-line threat detection based on event tree similarity analysis
Ansaldo STS, Italy.ORCID iD: 0000-0002-2833-7196
Ansaldo STS, Italy.
Università di Napoli Federico II, Italy.
Università di Napoli Federico II, Italy.
2011 (English)In: 2011 8th IEEE International Conference on Advanced Video and Signal Based Surveillance, AVSS 2011, IEEE, 2011, p. 414-419Conference paper, Published paper (Refereed)
Abstract [en]

The security of railway and mass-transit systems is increasingly dependant on the effectiveness of integrated Security Management Systems (SMS), which are meant to detect threats and to provide operators with information required for alarm verification purposes. In order to lower the false alarm rate and improve the detection reliability of threat scenarios, event correlation capabilities need to be integrated into the SMS. In this paper an existing approach based on a-priori defined event patterns is extended using a heuristic situation recognition approach which is more robust to both imperfect scenario modeling (human faults) and missed detections (sensor faults). The approach is based on similarity analysis between the event trees representing scenarios and it is effective both on-line and off-line. Applied on-line, it allows for an earlier and more fault-tolerant threat detection, since scenario matching is not required to be complete nor exact. Applied off-line, its effectiveness is twofold: first, it allows for detecting redundancies when updating the scenario repository; secondly, it enhances the post-event forensic search of suspicious behaviors not previously stored in the scenario repository. The strategy is being experimented in the context of railway protection. 

Place, publisher, year, edition, pages
IEEE, 2011. p. 414-419
Keywords [en]
Event correlation, Event pattern, Event trees, False alarm rate, Fault-tolerant, Human faults, Missed detections, Robust approaches, Security management systems, Sensor fault, Similarity analysis, Situation recognition, Threat detection, Threat scenarios, Alarm systems, Fault detection, Information management, Plant extracts, Railroad transportation, Railroads, Security systems, Signal detection
National Category
Computer Systems
Research subject
Computer and Information Sciences Computer Science, Computer Science
Identifiers
URN: urn:nbn:se:lnu:diva-73674DOI: 10.1109/AVSS.2011.6027364Scopus ID: 2-s2.0-80053964122ISBN: 9781457708459 OAI: oai:DiVA.org:lnu-73674DiVA, id: diva2:1213906
Conference
2011 8th IEEE International Conference on Advanced Video and Signal Based Surveillance, AVSS 2011, 30 August - 2 September 2011, Klagenfurt
Note

C

Available from: 2018-06-05 Created: 2018-06-05 Last updated: 2018-06-07Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records BETA

Flammini, Francesco

Search in DiVA

By author/editor
Flammini, Francesco
Computer Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf