Abstract: The present subject matter provides various technical solutions to technical problems facing ADS-B cyber-attacks. One technical solution for detecting and mitigating ADS-B cyber-attacks includes receiving extracting information from received ADS-B signals, detecting a cyber-attack based on a selected subset of ADS-B information, determining a detection probability, and outputting a ADS-B cyber-attack type and probability. This solution may further include determining and implementing a cyber-attack mitigation to reduce the probability or effect of the detected cyber-attack. These solutions operate based on current ADS-B receiver technology, and can be combined with existing ADS-B receivers to detect message injection attacks, modification attacks, and jamming attacks. The technical solutions described herein use machine learning (ML) algorithms and statistical models to detect anomalies in incoming ADS-B messages.

Abstract: A computer architecture for geolocation spoofing/meaconing detection is disclosed. According to some aspects, a computer accesses an incoming geolocation positioning signal. The computer determines, using a signal characteristics calculation subsystem, geolocation positioning signal characteristics for the incoming geolocation positioning signal. The computer provides, using a geolocation positioning spoofing/meaconing detection subsystem, the geolocation positioning signal characteristics as an input vector to a neural network, wherein the neural network determines whether the incoming geolocation positioning signal is legitimate or fake. If the incoming geolocation positioning signal is determined to be fake: the computer computes, using a Bayesian inference subsystem, a likelihood and a severity of a geolocation positioning technology based attack. The computer provides, as a digital transmission, an indication of whether the incoming geolocation positioning signal is legitimate or fake.

Abstract: The present subject matter provides improved solutions for autonomous vehicle malicious control attacks. One technical solution for detecting and mitigating autonomous vehicle malicious control attacks includes receiving a malicious control signal, determining signal characteristics based on the malicious control signal, determining an autonomous vehicle attack based on signal characteristics, determining an attack countermeasure based on the attack determination, and sending a modified autonomous vehicle control signal to an autonomous vehicle based on the attack countermeasure. This solution may further include sending the signal characteristics to an autonomous vehicle attack machine learning (ML) system and receiving ML signal characteristics from the autonomous vehicle attack ML system, where the attack determination is based on the ML signal characteristics.

Abstract: The present subject matter provides various technical solutions to technical problems facing ADS-B cyber-attacks. One technical solution for detecting and mitigating ADS-B cyber-attacks includes receiving extracting information from received ADS-B signals, detecting a cyber-attack based on a selected subset of ADS-B information, determining a detection probability, and outputting a ADS-B cyber-attack type and probability. This solution may further include determining and implementing a cyber-attack mitigation to reduce the probability or effect of the detected cyber-attack. These solutions operate based on current ADS-B receiver technology, and can be combined with existing ADS-B receivers to detect message injection attacks, modification attacks, and jamming attacks. The technical solutions described herein use machine learning (ML) algorithms and statistical models to detect anomalies in incoming ADS-B messages.

Abstract: A computer architecture for geolocation spoofing/meaconing detection is disclosed. According to some aspects, a computer accesses an incoming geolocation positioning signal. The computer determines, using a signal characteristics calculation subsystem, geolocation positioning signal characteristics for the incoming geolocation positioning signal. The computer provides, using a geolocation positioning spoofing/meaconing detection subsystem, the geolocation positioning signal characteristics as an input vector to a neural network, wherein the neural network determines whether the incoming geolocation positioning signal is legitimate or fake. If the incoming geolocation positioning signal is determined to be fake: the computer computes, using a Bayesian inference subsystem, a likelihood and a severity of a geolocation positioning technology based attack. The computer provides, as a digital transmission, an indication of whether the incoming geolocation positioning signal is legitimate or fake.