Carlo Harpes scite author profile

Carlo Harpes

5Publications

62Citation Statements Received

23Citation Statements Given

How they've been cited

How they cite others

Affiliations

Itrust Consulting

Publications

Order By: Most citations

A training-resistant anomaly detection system

Muller

Lancrenon

Harpes

et al. 2018

Computers & Security

View full text Add to dashboard Cite

Modern network intrusion detection systems rely on machine learning techniques to detect trac anomalies and thus intruders. However, the ability to learn the network behaviour in real-time comes at a cost: malicious software can interfere with the learning process, and teach the intrusion detection system to accept dangerous trac. This paper presents an intrusion detection system (IDS) that is able to detect common network attacks including but not limited to, denial-of-service, bot nets, intrusions, and network scans. With the help of the proposed example IDS, we show to what extent the training attack (and more sophisticated variants of it) has an impact on machine-learning based detection schemes, and how it can be detected.

show abstract

Detecting Meaconing Attacks by Analysing the Clock Bias of Gnss Receivers

Marnach¹,

Mauw²,

Martins³

et al. 2013

View full text Add to dashboard Cite

Existing Global Navigation Satellite Systems offer no authentication of their satellite signals towards their civilian users. As a consequence, several types of GNSS-related attacks, including meaconing, may be performed and remain undetected. In the scope of the project "Developing a prototype of Localisation Assurance Service Provider", which is funded by ESA and realised by the company itrust consulting and the University of Luxembourg, a methodology to visualise the beginnings and the ends of meaconing attacks by monitoring the clock bias of an attacked receiver over time was developed. This paper presents an algorithm that is based on this attack visualisation technique and is capable of detecting meaconing attacks automatically. Experiments in a controlled environment confirmed that the chosen methodology works properly. In one of these tests, for example, six meaconing attacks were simulated by using a GNSS signal repeater. The algorithm was able to detect the beginnings and the ends of all six attacks, while resulting in no more than two false positives, even though the average delay introduced by the meaconing stations (repeater) was just 80 nanoseconds.

show abstract

Improving Resilience of Interdependent Critical Infrastructures via an On-Line Alerting System

Capodieci¹,

Diblasi

Ciancamerla

et al. 2010

View full text Add to dashboard Cite

This paper illustrates the activities under development within the FP7 EU MICIE project. The project is devoted to design and implement an on-line alerting system, able to evaluate, in real time, the level of risk of interdependent Critical Infrastructures (CIs). Such a risk is generated by undesired events and by the high level of interconnection of the different infrastructures. Heterogeneous models are under development to perform short term predictions of the Quality of Service (QoS) of each CI according to the QoS of the others, to the level of interdependency among the Infrastructures, and according to the undesired events identified in the reference scenario

show abstract

Bridging Two Worlds: Reconciling Practical Risk Assessment Methodologies with Theory of Attack Trees

Gadyatskaya

Harpes

Mauw

et al. 2016

View full text Add to dashboard Cite

Security risk treatment often requires a complex cost-benefit analysis to be carried out in order to select countermeasures that optimally reduce risks while having minimal costs. According to ISO/IEC 27001, risk treatment relies on catalogues of countermeasures, and the analysts are expected to estimate the residual risks. At the same time, recent advancements in attack tree theory provide elegant solutions to this optimization problem. In this paper we propose to bridge the gap between these two worlds by introducing optimal countermeasure selection problem on attack-defense trees into the TRICK security risk assessment methodology.

show abstract

Efficiently computing the likelihoods of cyclically interdependent risk scenarios

Muller¹,

Harpes²,

Traon³

et al. 2017

Computers & Security

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Carlo Harpes

A training-resistant anomaly detection system

Detecting Meaconing Attacks by Analysing the Clock Bias of Gnss Receivers

Improving Resilience of Interdependent Critical Infrastructures via an On-Line Alerting System

Bridging Two Worlds: Reconciling Practical Risk Assessment Methodologies with Theory of Attack Trees

Efficiently computing the likelihoods of cyclically interdependent risk scenarios

Contact Info

Product

Resources

About