Research Publications

Permanent URI for this communityhttps://rda.sliit.lk/handle/123456789/4194

This main community comprises five sub-communities, each representing the academic contribution made by SLIIT-affiliated personnel.

Browse

Filters

2025 - 20263

Advanced Search

Filter by

Settings

Author: search.filters.author.Abeywardena, K.Y

Search Results

Now showing 1 - 3 of 3
  • Thumbnail Image
    PublicationOpen Access
    A physics-informed machine learning for detecting suspicious satellite maneuvers (orbital manipulation)
    (Elsevier B.V., 2026) Karunathilake K.K.H; Abeywardena, K.Y; Vecchini, S
    Satellite systems have become prime targets for cyberthreats given their critical role in global infrastructure and general lack of security. Among these, orbital manipulation, a form of satellite hijacking, is a particularly severe threat that can disrupt essential operations and impact national security. To address these concerns, this research proposes an Artificial Intelligence (AI)-based anomaly detection system that utilizes Machine Learning (ML) models to analyze telemetry data for possible orbital manipulations with a multi-gate physics architecture grounded in orbital mechanics, to verify that detected anomalies are kinematically inconsistent and are therefore genuine integrity failures. This research demonstrates that temporal-based models like LSTM are essential for this domain, achieving high recall rates which are then validated by the physics component. While the framework includes multiple physical constraints, this study specifically validates the energy-based Vis-Viva gate, with the Tsiolkovsky and Angular Momentum gates established as architectural designs for future verification. This study concludes that successful AI deployment in orbital cybersecurity requires a comprehensive approach that integrates domain-specific context and physics-informed validation beyond traditional performance metrics
  • Thumbnail Image
    ItemEmbargo
    Stealth Eye: Behavioral Analysis for Fileless Malware Detection
    (Institute of Electrical and Electronics Engineers Inc., 2025) Bandara H.M.H.M; Ayeshani K.M.N; Kumari M.M.P.M; Wijerathna D.M.S.T; Abeywardena, K.Y; Wijesooriya, A
    Fileless malware is a significant cybersecurity threat as it is entirely present in system memory and evades traditional signature-based detection methods. This paper introduces STEALTH EYE, an endpoint behavioral analysis framework for detecting fileless malware, such as ransomware, spyware, trojans, and RedLine Stealer, in real time. The framework utilizes an endpoint agent that monitors system activity in real time and captures snapshots of behavior every 60 seconds for real- time threat analysis. These captures track memory injections, DLL loading and execution, file and handle operations, service activity, process and thread behavior, registry modifications, network communications, cryptographic function usage, keystroke logging, and clipboard access. The data that is collected is analyzed through supervised machine learning mechanisms to detect patterns that indicate fileless malware activity. In contrast to traditional post-infection forensic approaches, STEALTH EYE provides real-time monitoring, notification, and active response with enhanced cybersecurity resilience against the widespread fileless attacks.
  • Thumbnail Image
    ItemEmbargo
    A Dual-Branch CNN and Metadata Analysis Approach for Robust Image Tampering Detection
    (Institute of Electrical and Electronics Engineers Inc., 2025) Zakey, A; Bawantha, D; Shehara, D; Hasara, N; Abeywardena, K.Y; Fernando, H
    Image tampering has become a widespread issue due to the availability of advanced tools such as Photoshop, GIMP, and AI-powered technologies like Generative Adversarial Networks (GANs). These advancements have made it easier to create deceptive images, undermining their reliability and fueling misinformation. To address this growing problem, we propose a hybrid approach for image forgery detection, combining deep learning with traditional forensic techniques. Our study integrates a dual-branch Convolutional Neural Network (CNN) with handcrafted features derived from Error Level Analysis (ELA), noise residuals from the Spatial Rich Model, and metadata analysis to enhance detection capabilities. Metadata analysis plays a crucial role in identifying inconsistencies in image properties such as timestamps, geotags, and camera details, which often accompany tampered images. The CASIA dataset, a publicly available benchmark for tampered images, was used to train and evaluate the proposed model. After 30 epochs of training, the hybrid method achieved an accuracy of 95%, demonstrating its effectiveness in distinguishing between authentic and tampered images. This research highlights the advantages of combining deep learning models with traditional feature extraction methods and metadata analysis, offering a robust solution for detecting manipulated images. Our findings contribute to advancing image forensics by improving detection accuracy, even in cases involving sophisticated tampering methods driven by AI.