Shells Bells: Cyber-Physical Anomaly Detection in Data Centers

Lars Wustrich, Sebastian Gallenmuller, Stephan Gunther, Georg Carle, Marc Oliver Pahl

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Monitoring the side-channel sound can improve anomaly detection (AD) in data centers (DCs). However, a DC's dense setup results in a composite soundscape which makes it difficult to attribute sounds to individual devices.We propose a novel cyber-physical AD approach that validates device activity in realistic composite audio signals. By leveraging information from management network traffic, we predict changes in the DC soundscape. We use a convolutional neural network to compare our predictions with real observations to validate correct device activity and identify anomalies. Our evaluation using data from a real DC environment identifies spoofed and masqueraded activity with an accuracy of 98.62 %.

Original languageEnglish
Title of host publicationProceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024
EditorsJames Won-Ki Hong, Seung-Joon Seok, Yuji Nomura, You-Chiun Wang, Baek-Young Choi, Myung-Sup Kim, Roberto Riggio, Meng-Hsun Tsai, Carlos Raniery Paula dos Santos
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9798350327939
DOIs
StatePublished - 2024
Event2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024 - Seoul, Korea, Republic of
Duration: 6 May 202410 May 2024

Publication series

NameProceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024

Conference

Conference2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024
Country/TerritoryKorea, Republic of
CitySeoul
Period6/05/2410/05/24

Fingerprint

Dive into the research topics of 'Shells Bells: Cyber-Physical Anomaly Detection in Data Centers'. Together they form a unique fingerprint.

Cite this