Statistical anomaly detection with sensor networks
Abstract
We seek to detect statistically significant temporal or spatial changes in either the underlying process the sensor network is monitoring or in the network operation itself. These changes may point to faults, adversarial threats, misbehavior, or other anomalies that require intervention. To that end, we introduce a new statistical anomaly detection framework that uses Markov models to characterize the “normal” behavior of the sensor network. We develop a series of Markov models, including tree-indexed Markov chains which can model its spatial structure. For each model, an anomaly-free probability law is estimated from past traces. We leverage large deviations techniques to develop optimal anomaly detection rules for each corresponding Markov model, assessing whether its most recent empirical measure is consistent with the anomaly-free probability law. A series of simulation results, some with real sensor data, validate the effectiveness of the proposed anomaly detection algorithms.
Document Details
- Document Type
- Pub Defense Publication
- Publication Date
- Aug 01, 2010
- Source ID
- 10.1145/1824766.1824773
Entities
People
- Ioannis Ch. Paschalidis
- Yin Chen
Organizations
- Army Research Office
- Boston University
- Office of Emerging Frontiers and Multidisciplinary Activities
- United States Department of Energy