Hitting Moving Targets : Intelligent Prevention of IoT Intrusions on the Fly
Research output: Journal Publications and Reviews › RGC 21 - Publication in refereed journal › peer-review
Author(s)
Related Research Unit(s)
Detail(s)
Original language | English |
---|---|
Pages (from-to) | 21000-21012 |
Journal / Publication | IEEE Internet of Things Journal |
Volume | 10 |
Issue number | 23 |
Online published | 8 Jun 2023 |
Publication status | Published - 1 Dec 2023 |
Link(s)
Abstract
Massive Internet of Things (IoT) devices have been playing a critical role in both the cyber and physical worlds. Various cyber attacks pose significant risks to IoT. Machine learning based intrusion detection system (IDS) has earned much research attention. However, the intrusion prevention system (IPS) is rarely explored. Realtime intrusion prevention is quite challenging because the decision has to be made during a flow rather than after it finishes. Restricted by aligning with the shortest flows, existing IPSs generally inspect only the very first packets, leading to information loss for accurate detection. In this paper, we first measure the information loss quantitatively. Then we devise Sniper, an IoT IPS scheme consisting of a flow length predictor, a novel feature space, and an enhanced ensemble learning algorithm. The flow length predictor guides a proper prevention time point to preserve as much information as possible. The proposed Markov matrix based feature encoding method further saves more information than existing ones. The enhanced learning algorithm ensures a low false positive rate, which is critical for IPSs. We benchmark Sniper with one closed-world and three open-world datasets. The results show that Sniper achieves a 99.89% prevention rate and 0.03% false positive rate, which is superior to the five state-of-art baseline models. © 2023 IEEE.
Research Area(s)
- Feature extraction, Internet of Things (IoT), IP networks, machine learning (ML), Markov processes, Network-level security and protection, Prediction algorithms, Protocols, traffic analysis
Citation Format(s)
Hitting Moving Targets: Intelligent Prevention of IoT Intrusions on the Fly. / Tan, Shuaishuai; Liu, Wenyin; Dong, Qingkuan et al.
In: IEEE Internet of Things Journal, Vol. 10, No. 23, 01.12.2023, p. 21000-21012.
In: IEEE Internet of Things Journal, Vol. 10, No. 23, 01.12.2023, p. 21000-21012.
Research output: Journal Publications and Reviews › RGC 21 - Publication in refereed journal › peer-review