Hitting Moving Targets : Intelligent Prevention of IoT Intrusions on the Fly

Research output: Journal Publications and ReviewsRGC 21 - Publication in refereed journalpeer-review

1 Scopus Citations
View graph of relations

Author(s)

  • Shuaishuai Tan
  • Wenyin Liu
  • Qingkuan Dong
  • Shui Yu
  • Xiaoxiong Zhong
  • Daojing He

Related Research Unit(s)

Detail(s)

Original languageEnglish
Pages (from-to)21000-21012
Journal / PublicationIEEE Internet of Things Journal
Volume10
Issue number23
Online published8 Jun 2023
Publication statusPublished - 1 Dec 2023

Abstract

Massive Internet of Things (IoT) devices have been playing a critical role in both the cyber and physical worlds. Various cyber attacks pose significant risks to IoT. Machine learning based intrusion detection system (IDS) has earned much research attention. However, the intrusion prevention system (IPS) is rarely explored. Realtime intrusion prevention is quite challenging because the decision has to be made during a flow rather than after it finishes. Restricted by aligning with the shortest flows, existing IPSs generally inspect only the very first packets, leading to information loss for accurate detection. In this paper, we first measure the information loss quantitatively. Then we devise Sniper, an IoT IPS scheme consisting of a flow length predictor, a novel feature space, and an enhanced ensemble learning algorithm. The flow length predictor guides a proper prevention time point to preserve as much information as possible. The proposed Markov matrix based feature encoding method further saves more information than existing ones. The enhanced learning algorithm ensures a low false positive rate, which is critical for IPSs. We benchmark Sniper with one closed-world and three open-world datasets. The results show that Sniper achieves a 99.89% prevention rate and 0.03% false positive rate, which is superior to the five state-of-art baseline models. © 2023 IEEE.

Research Area(s)

  • Feature extraction, Internet of Things (IoT), IP networks, machine learning (ML), Markov processes, Network-level security and protection, Prediction algorithms, Protocols, traffic analysis

Citation Format(s)

Hitting Moving Targets: Intelligent Prevention of IoT Intrusions on the Fly. / Tan, Shuaishuai; Liu, Wenyin; Dong, Qingkuan et al.
In: IEEE Internet of Things Journal, Vol. 10, No. 23, 01.12.2023, p. 21000-21012.

Research output: Journal Publications and ReviewsRGC 21 - Publication in refereed journalpeer-review