{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2016:MLUHG4VVYJ4FUNNGMHRVE4ABRU","short_pith_number":"pith:MLUHG4VV","canonical_record":{"source":{"id":"1606.06707","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.GT","submitted_at":"2016-06-21T18:59:55Z","cross_cats_sorted":["cs.CR","cs.SY"],"title_canon_sha256":"44c38e343948e03e6fd2be471318822dc96a4189fb01a1548d71ef43f45b438d","abstract_canon_sha256":"a20f2a9c633ee6ee58850782ab94145650af4d50f3b40ebdea47b4b9e4957ab6"},"schema_version":"1.0"},"canonical_sha256":"62e87372b5c2785a35a661e35270018d2286ba23d7d5a7f224349e4a6f40db00","source":{"kind":"arxiv","id":"1606.06707","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1606.06707","created_at":"2026-05-18T00:51:05Z"},{"alias_kind":"arxiv_version","alias_value":"1606.06707v2","created_at":"2026-05-18T00:51:05Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1606.06707","created_at":"2026-05-18T00:51:05Z"},{"alias_kind":"pith_short_12","alias_value":"MLUHG4VVYJ4F","created_at":"2026-05-18T12:30:32Z"},{"alias_kind":"pith_short_16","alias_value":"MLUHG4VVYJ4FUNNG","created_at":"2026-05-18T12:30:32Z"},{"alias_kind":"pith_short_8","alias_value":"MLUHG4VV","created_at":"2026-05-18T12:30:32Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2016:MLUHG4VVYJ4FUNNGMHRVE4ABRU","target":"record","payload":{"canonical_record":{"source":{"id":"1606.06707","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.GT","submitted_at":"2016-06-21T18:59:55Z","cross_cats_sorted":["cs.CR","cs.SY"],"title_canon_sha256":"44c38e343948e03e6fd2be471318822dc96a4189fb01a1548d71ef43f45b438d","abstract_canon_sha256":"a20f2a9c633ee6ee58850782ab94145650af4d50f3b40ebdea47b4b9e4957ab6"},"schema_version":"1.0"},"canonical_sha256":"62e87372b5c2785a35a661e35270018d2286ba23d7d5a7f224349e4a6f40db00","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:51:05.607298Z","signature_b64":"hztG1R7X/eujXyzxQOCq/yKxmsEIePzm+F5TEcTqclXlMACcsBtQE2iRm/yHhMNhgX5GzCBRk1gSO2PXh/rkDQ==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"62e87372b5c2785a35a661e35270018d2286ba23d7d5a7f224349e4a6f40db00","last_reissued_at":"2026-05-18T00:51:05.606716Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:51:05.606716Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1606.06707","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:51:05Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"NePsAFs9U6T4WgzgvOlJjgQ/lsE/vc169XgYTLSWyr9KZEVZak7n5navI6fL5Cbqx+x13/ohTnssUyAvGuSNCg==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-27T08:30:54.414093Z"},"content_sha256":"e2ec474783eba86a1dd16f34f814910605cffa8514b4a6b5e421abc426dcbbb6","schema_version":"1.0","event_id":"sha256:e2ec474783eba86a1dd16f34f814910605cffa8514b4a6b5e421abc426dcbbb6"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2016:MLUHG4VVYJ4FUNNGMHRVE4ABRU","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Optimal Thresholds for Anomaly-Based Intrusion Detection in Dynamical Environments","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CR","cs.SY"],"primary_cat":"cs.GT","authors_text":"Amin Ghafouri, Aron Laszka, Waseem Abbas, Xenofon Koutsoukos, Yevgeniy Vorobeychik","submitted_at":"2016-06-21T18:59:55Z","abstract_excerpt":"In cyber-physical systems, malicious and resourceful attackers could penetrate the system through cyber means and cause significant physical damage. Consequently, detection of such attacks becomes integral towards making these systems resilient to attacks. To achieve this objective, intrusion detection systems (IDS) that are able to detect malicious behavior can be deployed. However, practical IDS are imperfect and sometimes they may produce false alarms for a normal system behavior. Since alarms need to be investigated for any potential damage, a large number of false alarms may increase the "},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1606.06707","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:51:05Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"xFJn02q/UOqYRGuXJhFb84g+aKsT6LADIFpzXjSPEYNN7261plRT+706AJo4fTQ+43Hm/nkyktNKlenMaFgQBw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-27T08:30:54.414707Z"},"content_sha256":"12cb761f6022ded40bc8c2069c754e65700cd3e538defdf057433b2c6cb921d2","schema_version":"1.0","event_id":"sha256:12cb761f6022ded40bc8c2069c754e65700cd3e538defdf057433b2c6cb921d2"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU/bundle.json","state_url":"https://pith.science/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-05-27T08:30:54Z","links":{"resolver":"https://pith.science/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU","bundle":"https://pith.science/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU/bundle.json","state":"https://pith.science/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU/state.json","well_known_bundle":"https://pith.science/.well-known/pith/MLUHG4VVYJ4FUNNGMHRVE4ABRU/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2016:MLUHG4VVYJ4FUNNGMHRVE4ABRU","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"a20f2a9c633ee6ee58850782ab94145650af4d50f3b40ebdea47b4b9e4957ab6","cross_cats_sorted":["cs.CR","cs.SY"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.GT","submitted_at":"2016-06-21T18:59:55Z","title_canon_sha256":"44c38e343948e03e6fd2be471318822dc96a4189fb01a1548d71ef43f45b438d"},"schema_version":"1.0","source":{"id":"1606.06707","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1606.06707","created_at":"2026-05-18T00:51:05Z"},{"alias_kind":"arxiv_version","alias_value":"1606.06707v2","created_at":"2026-05-18T00:51:05Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1606.06707","created_at":"2026-05-18T00:51:05Z"},{"alias_kind":"pith_short_12","alias_value":"MLUHG4VVYJ4F","created_at":"2026-05-18T12:30:32Z"},{"alias_kind":"pith_short_16","alias_value":"MLUHG4VVYJ4FUNNG","created_at":"2026-05-18T12:30:32Z"},{"alias_kind":"pith_short_8","alias_value":"MLUHG4VV","created_at":"2026-05-18T12:30:32Z"}],"graph_snapshots":[{"event_id":"sha256:12cb761f6022ded40bc8c2069c754e65700cd3e538defdf057433b2c6cb921d2","target":"graph","created_at":"2026-05-18T00:51:05Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"In cyber-physical systems, malicious and resourceful attackers could penetrate the system through cyber means and cause significant physical damage. Consequently, detection of such attacks becomes integral towards making these systems resilient to attacks. To achieve this objective, intrusion detection systems (IDS) that are able to detect malicious behavior can be deployed. However, practical IDS are imperfect and sometimes they may produce false alarms for a normal system behavior. Since alarms need to be investigated for any potential damage, a large number of false alarms may increase the ","authors_text":"Amin Ghafouri, Aron Laszka, Waseem Abbas, Xenofon Koutsoukos, Yevgeniy Vorobeychik","cross_cats":["cs.CR","cs.SY"],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.GT","submitted_at":"2016-06-21T18:59:55Z","title":"Optimal Thresholds for Anomaly-Based Intrusion Detection in Dynamical Environments"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1606.06707","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:e2ec474783eba86a1dd16f34f814910605cffa8514b4a6b5e421abc426dcbbb6","target":"record","created_at":"2026-05-18T00:51:05Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"a20f2a9c633ee6ee58850782ab94145650af4d50f3b40ebdea47b4b9e4957ab6","cross_cats_sorted":["cs.CR","cs.SY"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.GT","submitted_at":"2016-06-21T18:59:55Z","title_canon_sha256":"44c38e343948e03e6fd2be471318822dc96a4189fb01a1548d71ef43f45b438d"},"schema_version":"1.0","source":{"id":"1606.06707","kind":"arxiv","version":2}},"canonical_sha256":"62e87372b5c2785a35a661e35270018d2286ba23d7d5a7f224349e4a6f40db00","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"62e87372b5c2785a35a661e35270018d2286ba23d7d5a7f224349e4a6f40db00","first_computed_at":"2026-05-18T00:51:05.606716Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:51:05.606716Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"hztG1R7X/eujXyzxQOCq/yKxmsEIePzm+F5TEcTqclXlMACcsBtQE2iRm/yHhMNhgX5GzCBRk1gSO2PXh/rkDQ==","signature_status":"signed_v1","signed_at":"2026-05-18T00:51:05.607298Z","signed_message":"canonical_sha256_bytes"},"source_id":"1606.06707","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:e2ec474783eba86a1dd16f34f814910605cffa8514b4a6b5e421abc426dcbbb6","sha256:12cb761f6022ded40bc8c2069c754e65700cd3e538defdf057433b2c6cb921d2"],"state_sha256":"c5fc28d1239481b1847f0c1dd8c7865a03c64d88605c8bed6409c1c4f800938c"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"f3UFgtiTmHiImm30SxjsOmzGJxAk0+XXN/V1WiczYk366DEMnQ4EdTYuZolWzLKvCZuj23KZ75qalXO0B6tkDw==","signed_message":"bundle_sha256_bytes","signed_at":"2026-05-27T08:30:54.417821Z","bundle_sha256":"4748bcda350e7b5a30009e2e9db9495c2cae4089c34dcecf2ca438be0e46134d"}}