Academia.eduAcademia.edu

Outline

Title
Abstract
Figures
Introduction
Background
Anomaly Behavior Analysis
Abnormal Behavior Analysis Methodology
Dataset
Experimental Results
Conclusions and Future Work
Future Work
References
All Topics
Computer Science
Cybersecurity

Anomaly Behavior Analysis for IoT Network Nodes

Profile image of L FHL FH

2019, ACM International Conference Proceeding Series. 3rd International Conference on Future Networks and Distributed Systems,

https://doi.org/10.1145/3341325.3342008
visibility

description

6 pages

link

1 file

Abstract

The Internet of Things (IoT) will connect not only computers and mobile devices, but it will also interconnect smart buildings, homes, and cities. The integration of IoT with Fog and Cloud Computing can bring not only the computational requirements, but they also enable IoT services to be pervasive, cost-effective, and can be accessed from anywhere and at any time. In any IoT application, communications are crucial to deliver the required information, for instance to take actions during crisis events. However, IoT components such as Gateways, usually referred as IoT nodes, will introduce major security challenges as they contribute to increase the attack surface, preventing the IoT to deliver accurate information to final users. In this paper, we present a methodology to develop an Intrusion Detection System based on Anomaly Behavior Analysis to detect when an IoT network node is being compromised. Our preliminary experimental results show that our approach accurately detects known and unknown anomalies due to misuses or cyber-attacks, with high detection rate and low false alarms.

Figures (6)
Figure 1: oT multilayer framework [7] There are several IoT frameworks and architectures that can be used to apply IDSs [20-22]. Figure 1 depicts the framework used in this research, it was introduced and widely explained in [7] as a reference framework to build IoT applications. The framework consists of four layers: IoT end Nodes (end devices), Network, Services and Applications. In this scenario, network devices play an important role by linking end nodes with the services layer. Cyberattacks can be launched against the functions and services provided by each layer shown in Figure 1. For each layer, threats can be defined in terms of target, impact, and mitigation methods.
Figure 1: oT multilayer framework [7] There are several IoT frameworks and architectures that can be used to apply IDSs [20-22]. Figure 1 depicts the framework used in this research, it was introduced and widely explained in [7] as a reference framework to build IoT applications. The framework consists of four layers: IoT end Nodes (end devices), Network, Services and Applications. In this scenario, network devices play an important role by linking end nodes with the services layer. Cyberattacks can be launched against the functions and services provided by each layer shown in Figure 1. For each layer, threats can be defined in terms of target, impact, and mitigation methods.
Figure 2: Anomaly behavior analysis deployment methodology for loT Gateway.
Figure 2: Anomaly behavior analysis deployment methodology for loT Gateway.
Table 1: Decision table for risks
Table 1: Decision table for risks
Table 2: Attack detection rate
Table 2: Attack detection rate
Figure 4: Proposed ABA IDS based on ANN-C architecture.
Figure 4: Proposed ABA IDS based on ANN-C architecture.

Related papers

Exploring the Use of Data-Driven Approaches for Anomaly Detection in the Internet of Things (IoT) Environment
Eleonora Achiluzzi

Cornell University - arXiv, 2022

The Internet of Things (IoT) is a system that connects physical computing devices, sensors, software, and other technologies. Data can be collected, transferred, and exchanged with other devices over the network without requiring human interactions. One challenge the development of IoT faces is the existence of anomaly data in the network. Therefore, research on anomaly detection in the IoT environment has become popular and necessary in recent years. This survey provides an overview to understand the current progress of the different anomaly detection algorithms and how they can be applied in the context of the Internet of Things. In this survey, we categorize the widely used anomaly detection machine learning and deep learning techniques in IoT into three types: clustering-based, classification-based, and deep learningbased. For each category, we introduce some state-of-the-art anomaly detection methods and evaluate the advantages and limitations of each technique.

View PDFchevron_right
Anomaly based Intrusion Detection by Heuristics to Predict Intrusion Scope of IOT Network Transactions
ravinder korani

International Journal of Engineering & Technology, 2018

Conventional intrusion detection mechanisms face serious limitations in identifying heterogeneous and distributed type of intrusions over the IoT environment. This is due to inadequate resources and open deployment environment of IoT. Accordingly, ensuring data security and privacy are tough challenges in the practical context. This manuscript discusses various aspects of networking security and related challenges along with the concepts of system architecture. Further, endeavored to define a machine learning model that outlines two heuristics called Intrusion Scope Heuristic ( ), and benign scope heuristic ( ), which further uses in predictive analysis to identify the IOT network transaction is prone to intrusion or benign. The experimental study revealed the significance of the proposal with maximal detection accuracy, and minimal miss rate.

View PDFchevron_right
Artificial Neural Networks-Based Intrusion Detection System for Internet of Things Fog Nodes
Victor H Benitez

IEEE Access

The Internet of Things (IoT) represents a mean to share resources (memory, storage computational power, data, etc.) between computers and mobile devices, as well as buildings, wearable devices, electrical grids, and automobiles, just to name few. The IoT is leading to the development of advanced information services that will require large storage and computational power, as well as real-time processing capabilities. The integration of IoT with emerging technologies such as Fog Computing can complement these requirements with pervasive and cost-effective services capable of processing largescale geo-distributed information. In any IoT application, communication availability is essential to deliver accurate and useful information, for instance, to take actions during dangerous situations, or to manage critical infrastructures. IoT components like gateways, also called Fog Nodes, face outstanding security challenges as the attack surface grows with the number of connected devices requesting communication services. These Fog nodes can be targeted by an attacker, preventing the nodes from delivering important information to the final users or to perform accurate automated actions. This paper introduces an Anomaly Behavior Analysis Methodology based on Artificial Neural Networks, to implement an adaptive Intrusion Detection System (IDS) capable of detecting when a Fog node has been compromised, and then take the required actions to ensure communication availability. The experimental results reveal that the proposed approach has the capability for characterizing the normal behavior of Fog Nodes despite its complexity due to the adaptive scheme, and also has the capability of detecting anomalies due to any kind of sources such as misuses, cyber-attacks or system glitches, with high detection rate and low false alarms. INDEX TERMS Anomaly behavior, cyber security, fog computing, IoT, neural networks.

View PDFchevron_right
A Novel Multi Algorithm Approach to Identify Network Anomalies in the IoT Using Fog Computing and a Model to Distinguish between IoT and Non-IoT Devices
Rami Alzahrani

Journal of Sensor and Actuator Networks, 2023

Botnet attacks, such as DDoS, are one of the most common types of attacks in IoT networks. A botnet is a collection of cooperated computing machines or Internet of Things gadgets that criminal users manage remotely. Several strategies have been developed to reduce anomalies in IoT networks, such as DDoS. To increase the accuracy of the anomaly mitigation system and lower the false positive rate (FPR), some schemes use statistical or machine learning methodologies in the anomaly-based intrusion detection system (IDS) to mitigate an attack. Despite the proposed anomaly mitigation techniques, the mitigation of DDoS attacks in IoT networks remains a concern. Because of the similarity between DDoS and normal network flows, leading to problems such as a high FPR, low accuracy, and a low detection rate, the majority of anomaly mitigation methods fail. Furthermore, the limited resources in IoT devices make it difficult to implement anomaly mitigation techniques. In this paper, an efficient anomaly mitigation system has been developed for the IoT network through the design and implementation of a DDoS attack detection system that uses a statistical method that combines three algorithms: exponentially weighted moving average (EWMA), K-nearest neighbors (KNN), and the cumulative sum algorithm (CUSUM). The integration of fog computing with the Internet of Things has created an effective framework for implementing an anomaly mitigation strategy to address security issues such as botnet threats. The proposed module was evaluated using the Bot-IoT dataset. From the results, we conclude that our model has achieved a high accuracy (99.00%) with a low false positive rate (FPR). We have also achieved good results in distinguishing between IoT and non-IoT devices, which will help networking teams make the distinction as well.

View PDFchevron_right
Anomaly detection and privacy preservation in cloud-centric Internet of Things
Burak Kantarci, Ismail Butun

2015 IEEE International Conference on Communication Workshop (ICCW), 2015

Internet of Things (IoT) concept provides a number of opportunities to improve our daily lives while also creating a potential risk of increasing the vulnerability of personal information to security and privacy breaches. Data collected from IoT is usually offloaded to the Cloud which may further leave data prone to a variety of attacks if security and privacy issues are not handled properly. Anomaly detection has been one of the widely adopted security measures in wired and wireless networks. However, it is not straight forward to apply most of the anomaly detection techniques to IoT and cloud. One of the main challenges is deriving outlier features from the vast volume of data pumped from IoT to the cloud. Other challenges include the large number of sources generating data, heterogenous connectivity and traffic patterns of IoT devices, cloud services being offered at geographically remote places and causing IoT data to be stored in different countries with different legislations. This paper, for the first time, presents the challenges and opportunities in anomaly detection for IoT and cloud. It first introduces the prominent features and application fields of IoT and Cloud, then discusses security and privacy risks to personal information and finally focuses on solutions from anomaly detection perspective.

View PDFchevron_right
DERIVING INTELLIGENT DATA ANALYTICS USING ANOMALY DETECTION FRAMEWORK FOR IOT NETWORK AND SMART ENVIRONMENTS
Chief E D I T O R IJRISAT

Dr.Anil Lamba, 2017

Data Analytics is by far the component with more added value in Internet of Things (IoT) networks. One aspect of data analytics is anomaly detection within data points received in some cases in real time that help to conduct predictive maintenance, weather monitoring or cyber security forensics for instance. Although there exists a number of web dashboards that allow IoT users to visualize data in time domain and perform statistical analysis, anomaly detection is often absent else if present not that straightforward, reliable and accurate. The development and implementation of Anomaly Detection Engine (ADE) poses a number of challenges that are in fact addressed in this paper. The research work exposes the multifaceted aspect of IoT networks and applications based on real life use cases and the difficulties engendered in mounting an ADE from both software system engineering and network convergence perspectives. Moreover a comparative description of diverse time series models adopted in anomaly detection is undertaken. It was noticed that there is neither one size fit all solution nor a plug n play alternative and that the unsupervised mode in machine learning as a model for time series analysis is the most versatile and efficient technique for IoT analytics developers.

View PDFchevron_right
Exploring IoT Intrusions: Advanced Techniques for Detection, Prevention, and Response
Vikas Somani

Taylor & Francis Group, London, 2025

The rapid expansion of Internet of Things (IoT) devices introduced critical security issues, especially intrusions that target vulnerabilities in IoT devices and systems. This paper analyses IoT intrusions and problems, focusing on advanced detection, prevention, and response methods and identifying the most common threats and attack and their possible result. This paper explores detection techniques, such as machine learning anomaly detection systems, and finds their significance in determining security violations. Device firmware updates, its data encryption, and network segmentation can be used for prevention and robust techniques. Also, we discuss the mechanisms for quick and sufficient response plans and threat intelligence sharing. This provides practical solutions and makes good use of data protection of users data and security measures through literature surveys and case studies. Our analysis finds the need for a protection approach to safeguard IoT ecosystems, providing valuable insights for researchers and industry experts to improve IoT security frameworks.

View PDFchevron_right
AD-IoT: Anomaly Detection of IoT Cyberattacks in Smart City Using Machine Learning
Esam Aloufi

IEEE, 2019

In recent years, the wide adoption of the modern Internet of Things (IoT) paradigm has led to the invention of smart cities. Smart cities operate in real-world time to promote ease and quality of life in urban cities. The network traffic of a smart city via IoT systems is growing exponentially and introducing new cybersecurity challenges since these IoT devices are being connected to sensors that are directly connected to massive cloud servers. In order to mitigate these cyberattacks, the developers need to enhance new techniques for detecting infected IoT devices. In this paper, to address the IoT cybersecurity threats in a smart city, we propose an Anomaly Detection-IoT (AD-IoT) system, which is an intelligent anomaly detection based on Random Forest machine learning algorithm. The proposed solution can effectively detect compromised IoT devices at distributed fog nodes. To evaluate our model, we utilized modern dataset to illustrate the model's accuracy. Our findings show that the AD-IoT can effectively achieve highest classification accuracy of 99.34% with lowest false positive rate.

View PDFchevron_right
Intelligent Anomaly Detection System for IoT
Reinaldo Scappini

ieee international conference on cloud computing technology and science, 2021

The growing use of the Internet of Things (IoT) in different areas implies a proportional growth in threats and attacks on end devices. To solve this problem, the IoT systems must be equipped with an anomaly detection system (ADS). This work introduces the design of a hybrid ADS based on the Software-Defined Network (SDN) architecture, which combines the rule-based and Machine Learning-based detection technique. Whereas the rule-based approach is used to detect known attacks with the help of rules defined by security experts. And the Machine Learning approach is used to detect unknown attacks with the help of Artificial Intelligence techniques.

View PDFchevron_right
Attack and Anomaly Detection in IoT Networks using Machine Learning
Selva Mary G

International Journal of Computer Science and Mobile Computing, 2020

For quite a few years now the name Internet of Things (IoT) has been around. IoT is a technology capable of revolutionizing our way of life, in sectors ranging from transportation to health, from entertainment to our interactions with government. Even this great opportunity presents a number of critical obstacles. As we strive to develop policies, regulations, and governance that form this development without stifling creativity, the increase in the number of devices and the frequency of that increase presents problems to our security and freedom. This work attentions on the security aspect of IoT networks by examining the serviceability of machine learning algorithms in detecting anomalies that are contained within such network data. It discusses (Machine Learning (ML) algorithms which are used effectively in relatively similar situations and compares them using several parameters and methods. The following algorithms are implemented in this work: Random Forest (RF), Naive Bayes (NB), Support Vector Machine (SVM), and Decision tree Algorithm. The Random Forest algorithm obtained the best results, with an accuracy of 99.5 per cent.

View PDFchevron_right

References (31)

  1. M. Al-Bahri, A. Yankovsky, A. Borodin, R. Kirichek, R. 2018. Testbed for Identify IoT-Devices Based on Digital Object Architecture. In Proceedings of the Internet of Things, Smart Spaces, and Next Generation Networks and Systems; Galinina, O., Andreev, S., Balandin, S., Koucheryavy, Y., Eds.; Springer International Publishing, 2018; pp. 129-137.
  2. A. Zanella, N. Bui, A. Castellani, L. Vangelista, M. Zorzi. 2014. Internet of Things for Smart Cities. IEEE Internet of Things Journal 2014, 1, 22-32.
  3. D. Kushner. 2013. The real story of stuxnet. IEEE Spectrum 2013, 50, 48-53.
  4. J. Pacheco, S. Hariri. 2016. IoT Security Framework for Smart Cyber Infrastructures. In Proceedings of the 2016 IEEE 1st International Workshops on Foundations and Applications of Self* Systems (FAS*W); 2016; pp. 242- 247.
  5. J.L. Pérez, A. Gutierrez-Torre, J.L. Berral, D. Carrera. 2018. A resilient and distributed near real-time traffic forecasting application for Fog computing environments. Future Generation Computer Systems 2018, 87, 198-212.
  6. A.S. Sohal, R. Sandhu, S.K. Sood, V. Chang. 2018. A cybersecurity framework to identify malicious edge device in fog computing and cloud-of-things environments. Computers & Security 2018, 74, 340-354.
  7. J. Pacheco, S. Hariri. 2018. Anomaly behavior analysis for IoT sensors. Transactions on Emerging Telecommunications Technologies 2018, 29, e3188.
  8. G. Orsini, D. Bade, W. Lamersdorf. 2016. CloudAware: A Context-Adaptive Middleware for Mobile Edge and Cloud Computing Applications. In Proceedings of the 2016 IEEE 1st International Workshops on Foundations and Applications of Self* Systems (FAS*W); 2016; pp. 216-221.
  9. A. Hegyi, H. Flinck, I. Ketyko, P. Kuure, C. Nemes, L. Pinter. 2016. Application Orchestration in Mobile Edge Cloud: Placing of IoT Applications to the Edge. In Proceedings of the 2016 IEEE 1st International Workshops on Foundations and Applications of Self* Systems (FAS*W); IEEE: Augsburg, Germany, 2016; pp. 230-235.
  10. F. Bonomi, R.A. Milito, J. Zhu, S. Addepalli. Fog computing and its role in the internet of things. In Proceedings of the MCC@SIGCOMM; 2012.
  11. C.A. Garcia-Perez, P. Merino. Enabling Low Latency Services on LTE Networks. In Proceedings of the 2016 IEEE 1st International Workshops on Foundations and Applications of Self* Systems (FAS*W); 2016; pp. 248-255.
  12. J. Xu, K. Ota, M. Dong, A. Liu, Q. Li. SIoTFog: Byzantine-resilient IoT fog networking. Frontiers Inf Technol Electronic Eng 2018, 19, 1546-1557.
  13. Q. Yaseen, F. AlBalas, Y. Jararweh, M. Al-Ayyoub. A Fog Computing Based System for Selective Forwarding Detection in Mobile Wireless Sensor Networks. In Proceedings of the 2016 IEEE 1st International Workshops on Foundations and Applications of Self* Systems (FAS*W); 2016; pp. 256-262.
  14. M. Conti, A. Dehghantanha, K. Franke, S. Watson. Internet of Things security and forensics: Challenges and opportunities. Future Generation Computer Systems 2018, 78, 544-546.
  15. M. Ammar, G. Russello, B. Crispo. Internet of Things: A survey on the security of IoT frameworks. Journal of Information Security and Applications 2018, 38, 8-27.
  16. S. Ali, T. Al Balushi, Z. Nadir, O.K. Hussain. Risk Management for CPS Security. In Cyber Security for Cyber Physical Systems; Ali, S., Al Balushi, T., Nadir, Z., Hussain, O.K., Eds.; Studies in Computational Intelligence; Springer International Publishing: Cham, 2018; pp. 11-33 ISBN 978-3-319- 75880-0.
  17. O. Can, O.K. Sahingoz. A survey of intrusion detection systems in wireless sensor networks. In Proceedings of the 2015 6th International Conference on Modeling, Simulation, and Applied Optimization (ICMSAO); 2015; pp. 1-6.
  18. S. Fayssal, S. Hariri, Y. Al-Nashif. Anomaly-Based Behavior Analysis of Wireless Network Security. In Proceedings of the 2007 Fourth Annual International Conference on Mobile and Ubiquitous Systems: Networking Services (MobiQuitous); 2007; pp. 1-8.
  19. E. Hodo, X. Bellekens, A. Hamilton, P. Dubouilh, E. Iorkyase, C. Tachtatzis, R. Atkinson. Threat analysis of IoT networks using artificial neural network intrusion detection system. In Proceedings of the 2016 International Symposium on Networks, Computers and Communications (ISNCC); 2016; pp. 1-6.
  20. R. Schlegel, S. Obermeier, J. Schneider. Structured system threat modeling and mitigation analysis for industrial automation systems. In Proceedings of the 2015 IEEE 13th International Conference on Industrial Informatics (INDIN); 2015; pp. 197-203.
  21. H. Tran-Dang, D. Kim. An Information Framework for Internet of Things Services in Physical Internet. IEEE Access 2018, 6, 43967-43977.
  22. J. Guth, U. Breitenbücher, M. Falkenthal, F. Leymann, L. Reinfurt. Comparison of IoT platform architectures: A field study based on a reference architecture. In Proceedings of the 2016 Cloudification of the Internet of Things (CIoT); 2016; pp. 1-6.
  23. V.V. Gadde, H. Awano, Ikeda, M. An Encryption-Authentication Unified A/D Conversion Scheme for IoT Sensor Nodes. In Proceedings of the 2018 IEEE Asian Solid-State Circuits Conference (A-SSCC); 2018; pp. 123-126.
  24. B. Daddala, H. Wang, A.Y. Javaid. Design and implementation of a customized encryption algorithm for authentication and secure communication between devices. In Proceedings of the 2017 IEEE National Aerospace and Electronics Conference (NAECON); 2017; pp. 258-262.
  25. J. Pacheco, C. Tunc, S. Hariri. Design and evaluation of resilient infrastructures systems for smart cities. In Proceedings of the 2016 IEEE International Smart Cities Conference (ISC2); 2016; pp. 1-6.
  26. J. Pacheco, D. Ibarra, A. Vijay, S. Hariri. IoT Security Framework for Smart Water System. In Proceedings of the 2017 IEEE/ACS 14th International Conference on Computer Systems and Applications (AICCSA); 2017; pp. 1285-1292.
  27. Y. Mahmoodi, S. Reiter, Viehl, O. Bringmann, W. Rosenstiel. Attack Surface Modeling and Assessment for Penetration Testing of IoT System Designs. In Proceedings of the 2018 21st Euromicro Conference on Digital System Design (DSD); 2018; pp. 177-181.
  28. L. Welling, L. Thomson. PHP and MySQL Web development. Sams Publishing, 2003.
  29. Weka (consulted on March 25th 2019), retrieved form: http://weka.sourceforge.net/doc.dev/weka/classifiers/rules/JRip.html.
  30. I. Witten, E. Frank, M. Hall. Data Mining: Practical Machine Learning Tools and Techniques. 3rd Edition. Morgan Kaufmann Publishers (ISBN: 978-0-12- 374856-0), 2011
  31. H. Chauhan, V. Kumar, S. Pundir, S. Pilli. A Comparative Study of Classification Techniques for Intrusion Detection. IEEE International Symposium on Computational and Business Intelligence, New Delhi, India, 2013.

Related papers

Anomaly behavior analysis for IoT sensors
Jesus Pacheco

Transactions on Emerging Telecommunications Technologies, 2017

The Internet of Things (IoT) will not only connect computers and mobile devices but also interconnect smart buildings, homes, and cities, as well as electrical grids, gas, and water networks, automobiles, airplanes, etc. IoT will lead to the development of a wide range of advanced information services that need to be processed in real time and require large storage and computational power. The integration of IoT with fog and cloud computing not only brings the computational requirements but also enables IoT services to be pervasive, cost‐effective, and accessible from anywhere and at anytime. In any IoT application, sensors are indispensable to bring the physical world into the digital world that can be implemented by leveraging fog computing. However, IoT sensors will introduce major security challenges as they contribute to a significant increase in the IoT attack surface. In this paper, we present a methodology to develop an intrusion detection system on the basis of anomaly beha...

View PDFchevron_right
Anomaly-based Intrusion Detection System for IoT Application
mansi bhavsar

Internet-of-Things (IoT) connects various physical objects through the Internet and it has a wide application, such as in transportation, military, healthcare, agriculture, and many more. Those applications are increasingly popular because they address real-time problems. In contrast, the use of transmission and communication protocols have raised serious security concerns for IoT devices, and traditional methods such as signature and rule-based methods are inefficient for securing these devices. Hence, identifying network traffic behavior and mitigating cyber attacks are important in IoT to provide guaranteed network security. Therefore, we develop an Intrusion Detection System (IDS) based on a deep learning model called Pearson-Correlation Coefficient - Convolutional Neural Networks (PCC-CNN) to detect network anomalies. The PCC-CNN model combines the important features obtained from the linear-based extractions followed by the Convolutional Neural Network. It performs a Binary cl...

View PDFchevron_right
Study of Anomaly Detection in IoT Sensors
Jewan Jot

The rapid proliferation of Internet of Things (IoT) technology has resulted in an exponential increase in the number of connected devices and sensors. These sensors play a crucial role in collecting and transmitting data, enabling various applications and services in diverse domains. However, the large-scale deployment of IoT sensors also introduces new challenges, particularly in the realm of anomaly detection. This research paper presents a comprehensive study of anomaly detection techniques specifically designed for IoT sensors. We delve into the different types of anomalies that can occur in IoT sensor data, including sudden changes, outliers, and malicious attacks. Moreover, we explore the unique characteristics and requirements of IoT sensor networks, such as resource constraints, heterogeneous data, and dynamic network topologies. To address these challenges, we provide an overview of state-of-the-art anomaly detection methods tailored to IoT sensor networks. These methods encompass both traditional statistical approaches and machine learning algorithms, considering their applicability and effectiveness in the IoT context. We discuss the strengths and limitations of each technique, highlighting their suitability for different anomaly detection scenarios. Furthermore, we analyze and compare the performance of these methods using real-world IoT sensor datasets, evaluating their accuracy, efficiency, and scalability. The findings of our study shed light on the strengths and limitations of existing techniques, enabling researchers and practitioners to make informed decisions when choosing an appropriate anomaly detection method for their IoT sensor networks. By enhancing the reliability and security of IoT sensor networks, the outcomes of this research contribute to the advancement of IoT technology and its widespread adoption in various domains, including smart cities, healthcare, transportation, and industrial automation.

View PDFchevron_right
An Anomaly Mitigation Framework for IoT Using Fog Computing
muhd aminu

Electronics

The advancement in IoT has prompted its application in areas such as smart homes, smart cities, etc., and this has aided its exponential growth. However, alongside this development, IoT networks are experiencing a rise in security challenges such as botnet attacks, which often appear as network anomalies. Similarly, providing security solutions has been challenging due to the low resources that characterize the devices in IoT networks. To overcome these challenges, the fog computing paradigm has provided an enabling environment that offers additional resources for deploying security solutions such as anomaly mitigation schemes. In this paper, we propose a hybrid anomaly mitigation framework for IoT using fog computing to ensure faster and accurate anomaly detection. The framework employs signature- and anomaly-based detection methodologies for its two modules, respectively. The signature-based module utilizes a database of attack sources (blacklisted IP addresses) to ensure faster d...

View PDFchevron_right
Anomaly Detection for Internet of Things Cyberattacks
Ahamed Aljuhani

Computers, Materials & Continua, 2022

The Internet of Things (IoT) has been deployed in diverse critical sectors with the aim of improving quality of service and facilitating human lives. The IoT revolution has redefined digital services in different domains by improving efficiency, productivity, and cost-effectiveness. Many service providers have adapted IoT systems or plan to integrate them as integral parts of their systems' operation; however, IoT security issues remain a significant challenge. To minimize the risk of cyberattacks on IoT networks, anomaly detection based on machine learning can be an effective security solution to overcome a wide range of IoT cyberattacks. Although various detection techniques have been proposed in the literature, existing detection methods address limited cyberattacks and utilize outdated datasets for evaluations. In this paper, we propose an intelligent, effective, and lightweight detection approach to detect several IoT attacks. Our proposed model includes a collaborative feature selection method that selects the best distinctive features and eliminates unnecessary features to build an effective and efficient detection model. In the detection phase, we also proposed an ensemble of learning techniques to improve classification for predicting several different types of IoT attacks. The experimental results show that our proposed method can effectively and efficiently predict several IoT attacks with a higher accuracy rate of 99.984%, a precision rate of 99.982%, a recall rate of 99.984%, and an F1-score of 99.983%.

View PDFchevron_right

Related topics

  • Information Systems
  • Information Security and Privacy
  • Embedded Systems Security
  • Web Application Security
  • Intrusion Detection System
  • Actuators and Sensors
    • 580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved