Show/Hide Menu
Hide/Show Apps
Logout
Türkçe
Türkçe
Search
Search
Login
Login
OpenMETU
OpenMETU
About
About
Open Science Policy
Open Science Policy
Open Access Guideline
Open Access Guideline
Postgraduate Thesis Guideline
Postgraduate Thesis Guideline
Communities & Collections
Communities & Collections
Help
Help
Frequently Asked Questions
Frequently Asked Questions
Guides
Guides
Thesis submission
Thesis submission
MS without thesis term project submission
MS without thesis term project submission
Publication submission with DOI
Publication submission with DOI
Publication submission
Publication submission
Supporting Information
Supporting Information
General Information
General Information
Copyright, Embargo and License
Copyright, Embargo and License
Contact us
Contact us
Anomaly Detection of MIL-STD 1553 Traffic: Machine Learning Methods and Realistic Simulation Environment
Download
10574403.pdf
Date
2023-9-6
Author
Sağırkaya, Hüseyin
Metadata
Show full item record
This work is licensed under a
Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License
.
Item Usage Stats
200
views
0
downloads
Cite This
In this thesis, we evaluate K-Nearest Neighbor (K-NN), Support Vector Machine (SVM), Naïve Bayes, Logistic Regression and Decision Tree machine learning (ML) methods for the anomaly detection of MIL-STD 1553 traffic to support cybersecurity. MIL-STD 1553 is a very widely used communication bus for military avionics systems. The fault tolerance features of MIL-STD 1553 target the safety and robustness of the aircraft. However, there is no built-in support against malicious attacks. Such cybersecurity issues are raised because of the increased connectivity of the MIL-STD 1553 to the outside world particularly for maintenance and diagnostics reasons. An imitated remote terminal and bus controller can behave as a member of the bus to change the data or corrupt the data and traffic to prevent messaging or stop communication. Furthermore, cyber security attacks such as denial-of-service can cause bus scheduling failure. In the scope of this thesis, we identify attack scenarios and MIL-STD 1553 message features that can be used for anomaly detection. We construct a testbed with real avionics hardware and a simulator that can generate attack messages. We inject the messages generated by the simulator into the MIL-STD 1553 bus using a PCIe card that is connected to the PC with the simulator. Furthermore, we employ bus monitoring and analysis tools to collect data. To this end, we modify the driver of the PCIe card and write software to parse and analyze the traffic data.We perform anomaly detection with the selected ML algorithms and compare their results.
Subject Keywords
MIL-STD 1553, Avionics, Machine Learning, Anomaly Detection
URI
https://hdl.handle.net/11511/105558
Collections
Graduate School of Natural and Applied Sciences, Thesis
Citation Formats
IEEE
ACM
APA
CHICAGO
MLA
BibTeX
H. Sağırkaya, “Anomaly Detection of MIL-STD 1553 Traffic: Machine Learning Methods and Realistic Simulation Environment,” M.S. - Master of Science, Middle East Technical University, 2023.
