Generative Deep Learning for Solutions to Data Deconflation Problems in Information and Operational Technology Networks

Roger Hallman; Roger Hallman; John Miguel; Arron Lu; Alejandro Monje; Mohammad R. Alam; George Cybenko

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Generative Deep Learning for Solutions to Data Deconflation Problems in Information and Operational Technology Networks

Topics: Algorithms, software engineering and development; Firewall, access control, identity management; Intrusion and detection techniques; Security as a Service including any Algorithms, Methodology and Software Proof-of-concepts

In Proceedings of the 8th International Conference on Internet of Things, Big Data and Security IoTBDS - Volume 1, 231-235, 2023 , Prague, Czech Republic

Authors: Roger Hallman ^{1

;

2} ; John Miguel ³ ; Arron Lu ³ ; Alejandro Monje ^{3

;

4} and George Cybenko ²

Affiliations: ¹ C.A.T Labs, San Diego, California, U.S.A. ; ² Thayer School of Engineering, Dartmouth College, Hanover, New Hampshire, U.S.A. ; ³ Naval Information Warfare Center Pacific, San Diego, California, U.S.A. ; ⁴ The M.I.T.R.E. Corporation, San Diego, California, U.S.A.

Keyword(s): Data Deconflation, Source Separation, Generative Adversarial Networks (GANs), Transformers, Double-NATed Network Traffic, Network Situational Awareness.

Abstract: Source separation problems are a long-standing and well-studied challenge in signal processing and information sciences. The “Cocktail Party Phenomenon” and other classical source separation problems are vector representable and additive, and thus solvable by well-established linear algebra techniques. However, the proliferation and adoption of Internet-connected devices (e.g., IoT, distributed sensor networks, etc.) have led to a “Cambrian explosion” of data that is available for processing. Much of this data is not readily available for processing because it includes data objects that are categorical or non-additive superpositions (i.e., data not confined to signals). The Data Deconflation Problem refers to the challenge of identifying and separating the individual constituent elements of these complex data objects. Real-world data deconflation scenarios include pattern-of-life tracking (e.g., identifying recreational activities in conjunction with a business trip), multi-target tr acking (e.g., occlusions and track assignment challenges), and network situational awareness (e.g., monitoring NATed network traffic, detecting and identifying shadow IT, network steganalysis). This paper details our approach, utilizing Generative Adversarial Networks (GANs) and attention-based Transformers, to solving the data deconflation problem, as well as our experimental application to network situational awareness tasks. We cover traditional source separation solutions and expound upon why these solutions are inadequate for network monitoring tasks. Background information on GANs and transformers is presented before a description of our architecture and initial experimentation which serves as a proof-of-concept. We then describe experimentation applying our methodology to network monitoring tasks, in particular separating activities and shadow IT devices within double-NATed network traffic. We discuss our results and our methodology’s applicability to other network monitoring tasks, such as network steganalysis and covert channel detection. (More)

Source separation problems are a long-standing and well-studied challenge in signal processing and information sciences. The “Cocktail Party Phenomenon” and other classical source separation problems are vector representable and additive, and thus solvable by well-established linear algebra techniques. However, the proliferation and adoption of Internet-connected devices (e.g., IoT, distributed sensor networks, etc.) have led to a “Cambrian explosion” of data that is available for processing. Much of this data is not readily available for processing because it includes data objects that are categorical or non-additive superpositions (i.e., data not confined to signals). The Data Deconflation Problem refers to the challenge of identifying and separating the individual constituent elements of these complex data objects. Real-world data deconflation scenarios include pattern-of-life tracking (e.g., identifying recreational activities in conjunction with a business trip), multi-target tracking (e.g., occlusions and track assignment challenges), and network situational awareness (e.g., monitoring NATed network traffic, detecting and identifying shadow IT, network steganalysis). This paper details our approach, utilizing Generative Adversarial Networks (GANs) and attention-based Transformers, to solving the data deconflation problem, as well as our experimental application to network situational awareness tasks.
We cover traditional source separation solutions and expound upon why these solutions are inadequate for network monitoring tasks. Background information on GANs and transformers is presented before a description of our architecture and initial experimentation which serves as a proof-of-concept. We then describe experimentation applying our methodology to network monitoring tasks, in particular separating activities and shadow IT devices within double-NATed network traffic. We discuss our results and our methodology’s applicability to other network monitoring tasks, such as network steganalysis and covert channel detection.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 3.21.159.86

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Hallman, R.; Miguel, J.; Lu, A.; Monje, A.; R. Alam, M. and Cybenko, G. (2023). Generative Deep Learning for Solutions to Data Deconflation Problems in Information and Operational Technology Networks. In Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS; ISBN 978-989-758-643-9; ISSN 2184-4976, SciTePress, pages 231-235. DOI: 10.5220/0011996700003482

@conference{iotbds23,
author={Roger Hallman. and John Miguel. and Arron Lu. and Alejandro Monje. and Mohammad {R. Alam}. and George Cybenko.},
title={Generative Deep Learning for Solutions to Data Deconflation Problems in Information and Operational Technology Networks},
booktitle={Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS},
year={2023},
pages={231-235},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011996700003482},
isbn={978-989-758-643-9},
issn={2184-4976},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS
TI - Generative Deep Learning for Solutions to Data Deconflation Problems in Information and Operational Technology Networks
SN - 978-989-758-643-9
IS - 2184-4976
AU - Hallman, R.
AU - Miguel, J.
AU - Lu, A.
AU - Monje, A.
AU - R. Alam, M.
AU - Cybenko, G.
PY - 2023
SP - 231
EP - 235
DO - 10.5220/0011996700003482
PB - SciTePress