Performance Evaluation of Intelligent Packet Filtering in Single-board Mini-computer Devices

  • Rafael C Silva ITA
  • Fabio A Melo ITA
  • Mauri Aparecido de Oliveira ITA
  • Aldri Luiz Dos Santos UFMG
  • Lourenco Alves Pereira ITA

Resumo


The growth of IoT devices and the spread of remote Internet access technologies allow the emergence of several applications. As the connectivity areas expand and technologies evolve, so do the systems and devices that support its infrastructure. However, with the increase in its benefits, we can raise several concerns about network security. In this scenario, most devices have limited hardware resources and opaque security systems. Therefore, in this study, we implement and analyze the performance of a lightweight machine learning-based Network Intrusion Detection System. We adopted the AB-TRAP, which is a framework that enables the use of updated datasets and considers operational conditions, on a Raspberry Pi 4 device, evaluating the device’s CPU, memory, and network performance. The results showed an average CPU usage between 20% and 30%, and no memory overload for the NIDS implementation. Ultimately, the experiment results indicate that the framework implementation is suitable for the chosen device and that the lightweight detection system is viable. Additionally, we created a malicious traffic generation tool, which was used to generate the traffic used in the experiments.
Palavras-chave: network intrusion detection, performance, packet filtering
Publicado
21/11/2023
SILVA, Rafael C; MELO, Fabio A; OLIVEIRA, Mauri Aparecido de; SANTOS, Aldri Luiz Dos; PEREIRA, Lourenco Alves. Performance Evaluation of Intelligent Packet Filtering in Single-board Mini-computer Devices. In: SIMPÓSIO BRASILEIRO DE ENGENHARIA DE SISTEMAS COMPUTACIONAIS (SBESC), 13. , 2023, Porto Alegre/RS. Anais [...]. Porto Alegre: Sociedade Brasileira de Computação, 2023 . p. 91-96. ISSN 2237-5430.