Autonomous Network Intrusion Detection for Resource-Constrained Devices of the Internet of Things

Jefferson Cavalcante; Tiago G. F. Barros; Jose N. de Souza

doi:10.5753/sbseg.2024.241788

Jefferson Cavalcante CESAR / UFC
Tiago G. F. Barros CESAR / CESAR School
Jose N. de Souza UFC

DOI: https://doi.org/10.5753/sbseg.2024.241788

Resumo

With the Internet of Things (IoT), cars, home assistants, cameras and other devices may be part of an ubiquitous network with access to personal information in real-time, able to interact with the environment and even influence people. For this reason, empowering such devices with network intrusion detection algorithms might be vital for the development of a more secure and trustworthy Internet of Things. In this work we study the performance and accuracy of machine learning models trained for this task, and analyzed the impact of their deployment in a microcontroller-based System-on-Chip used by IoT devices, along with the impact of TinyML-based optimizations, such as vectorization and quantization. From our experiments, Decision Trees presented very low inference time of 5 microseconds on average, and higher accuracy of 99.9% when compared to Logistic Regression and Neural Networks, being a viable solution for real-time, accurate and autonomous Network Intrusion Detection system for IoT devices.

Referências

Abadade, Y., Temouden, A., Bamoumen, H., Benamar, N., Chtouki, Y., and Hafid, A. S. (2023). A comprehensive survey on tinyml. IEEE Access, 11:96892–96922.

Aldhaheri, A., Alwahedi, F., Ferrag, M. A., and Battah, A. (2024). Deep learning for cyber threat detection in iot networks: A review. Internet of Things and Cyber-Physical Systems, 4:110–128.

Chaabouni, N., Mosbah, M., Zemmari, A., Sauvignac, C., and Faruki, P. (2019). Network intrusion detection for iot security based on learning techniques. IEEE Communications Surveys & Tutorials, 21(3):2671–2701.

Chua, T.-H. and Salam, I. (2023). Evaluation of machine learning algorithms in network-based intrusion detection using progressive dataset. Symmetry, 15(6).

Da Costa, K. A., Papa, J. P., Lisboa, C. O., Munoz, R., and de Albuquerque, V. H. C. (2019). Internet of things: A survey on machine learning-based intrusion detection approaches. Computer Networks, 151:147–157.

Ferrag, M. A., Maglaras, L., Moschoyiannis, S., and Janicke, H. (2020). Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study. Journal of Information Security and Applications, 50:102419.

Freitas De Araujo-Filho, P., Pinheiro, A. J., Kaddoum, G., Campelo, D. R., and Soares, F. L. (2021). An efficient intrusion prevention system for can: Hindering cyber-attacks with a low-cost platform. IEEE Access, 9:166855–166869.

Hajiheidari, S., Wakil, K., Badri, M., and Navimipour, N. J. (2019). Intrusion detection systems in the internet of things: A comprehensive investigation. Computer Networks, 160:165–191.

ITU-T (2019). Y.4460 - architectural reference models of devices for internet of things applications.

Mills, R., Marnerides, A. K., Broadbent, M., and Race, N. (2022). Practical intrusion detection of emerging threats. IEEE Transactions on Network and Service Management, 19(1):582–600.

Rahman, S. A., Tout, H., Talhi, C., and Mourad, A. (2020). Internet of things intrusion detection: Centralized, on-device, or federated learning? IEEE Network, 34(6):310–317.

Tekin, N., Acar, A., Aris, A., Uluagac, A. S., and Gungor, V. C. (2023). Energy consumption of on-device machine learning models for iot intrusion detection. Internet of Things, 21:100670.

Vanhoucke, V., Senior, A., and Mao, M. Z. (2011). Improving the speed of neural networks on cpus. In Deep Learning and Unsupervised Feature Learning Workshop, NIPS 2011.