IM-ZDD: A Feature-Enhanced Inverse Mapping Framework for Zero-Day Attack Detection in Internet of Vehicles
Tao Chen, Gongyu Zhang, Bingfeng Xu

TL;DR
This paper introduces IM-ZDD, a new framework for detecting zero-day attacks in the Internet of Vehicles by using synthetic data and inverse mapping to improve accuracy and reduce false alarms.
Contribution
The novel two-stage framework IM-ZDD uses a feature-enhanced inverse mapping approach with a CGAN and adversarial training to detect zero-day attacks in data-scarce environments.
Findings
IM-ZDD achieves an average AUC of 98.25% and F1-Score of 96.41% on the F2MD platform.
The framework outperforms existing methods by up to 4.4 and 10.8 percentage points in accuracy.
IM-ZDD has a median detection latency of 3 ms, meeting real-time requirements for IoV.
Abstract
In the Internet of Vehicles (IoV), zero-day attacks pose a significant security threat. These attacks are characterized by unknown patterns and limited sample availability. Traditional anomaly detection methods often fail because they rely on oversimplified assumptions, hindering their ability to model complex normal IoV behavior. This limitation results in low detection accuracy and high false alarm rates. To overcome these challenges, we propose a novel zero-day attack detection framework based on Feature-Enhanced Inverse Mapping (IM-ZDD). The framework introduces a two-stage process. In the first stage, a feature enhancement module mitigates data scarcity by employing an innovative multi-generator, multi-discriminator Conditional GAN (CGAN) with dynamic focusing loss to generate a large-scale, high-quality synthetic normal dataset characterized by sharply defined feature boundaries.…
Genes, proteins, chemicals, diseases, species, mutations and cell lines named across the full text — each resolved to its canonical identifier and authoritative record.
Click any figure to enlarge with its caption.
Figure 1
Figure 2
Figure 3
Figure 4
Figure 5
Figure 6Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsNetwork Security and Intrusion Detection · Anomaly Detection Techniques and Applications · Advanced Malware Detection Techniques
