Behavior Rule Specification-Based Intrusion Detection for Safety Critical Medical Cyber Physical Systems
Issue No. 01 - Jan.-Feb. (2015 vol. 12)
Robert Mitchell , Department of Computer Science, Virginia Polytechnic Institute and State University, Falls Church, VA
Ing-Ray Chen , Department of Computer Science, Virginia Polytechnic Institute and State University, Falls Church, VA
We propose and analyze a behavior-rule specification-based technique for intrusion detection of medical devices embedded in a medical cyber physical system (MCPS) in which the patient’s safety is of the utmost importance. We propose a methodology to transform behavior rules to a state machine, so that a device that is being monitored for its behavior can easily be checked against the transformed state machine for deviation from its behavior specification. Using vital sign monitor medical devices as an example, we demonstrate that our intrusion detection technique can effectively trade false positives off for a high detection probability to cope with more sophisticated and hidden attackers to support ultra safe and secure MCPS applications. Moreover, through a comparative analysis, we demonstrate that our behavior-rule specification-based IDS technique outperforms two existing anomaly-based techniques for detecting abnormal patient behaviors in pervasive healthcare applications.
Biomedical monitoring, Monitoring, Temperature measurement, Temperature sensors, Principal component analysis, Intrusion detection, Peer-to-peer computing,safety, Intrusion detection, sensor actuator networks, medical cyber physical systems, healthcare, security
Robert Mitchell, Ing-Ray Chen, "Behavior Rule Specification-Based Intrusion Detection for Safety Critical Medical Cyber Physical Systems", IEEE Transactions on Dependable and Secure Computing, vol. 12, no. , pp. 16-30, Jan.-Feb. 2015, doi:10.1109/TDSC.2014.2312327