10.1007/978-3-030-62840-6_6 HAL:hal-03794637">

Document Type

Conference Proceeding

Publication Date



Modern cyber-physical systems require effective intrusion detection systems to ensure adequate critical infrastructure protection. Developing an intrusion detection capability requires an understanding of the behavior of a cyber-physical system and causality of its components. Such an understanding enables the characterization of normal behavior and the identification and reporting of anomalous behavior. This chapter explores a relatively new time series analysis technique, empirical dynamic modeling, that can contribute to system understanding. Specifically, it examines if the technique can adequately describe causality in cyber-physical systems and provides insights into it serving as a foundation for intrusion detection.


AFIT Scholar furnishes the accepted manuscript of this conference paper, as found at the HAL citation on this page.

The manuscript of this work is open access under a Creative Commons Attribution License. CC BY 4.0 International.

The published version of record for this conference paper is available by subscription at Springer, using the DOI link.

Copyright statement for the version of record, hosted at Springer: © IFIP International Federation for Information Processing 2020.

Source Publication

14th International Conference on Critical Infrastructure Protection (ICCIP)