An Accurate Security Game for Low-Resource IoT Devices

Tutkimustuotos: Lehtiartikkeli

Standard

An Accurate Security Game for Low-Resource IoT Devices. / Sedjelmaci, Hichem; Senouci, Sidi Mohamed; Taleb, Tarik.

julkaisussa: IEEE Transactions on Vehicular Technology, Vuosikerta 66, Nro 10, 10.2017, s. 9381 - 9393.

Tutkimustuotos: Lehtiartikkeli

Harvard

APA

Vancouver

Author

Sedjelmaci, Hichem ; Senouci, Sidi Mohamed ; Taleb, Tarik. / An Accurate Security Game for Low-Resource IoT Devices. Julkaisussa: IEEE Transactions on Vehicular Technology. 2017 ; Vuosikerta 66, Nro 10. Sivut 9381 - 9393.

Bibtex - Lataa

@article{5847848099f1481bad73679617ac8a2c,
title = "An Accurate Security Game for Low-Resource IoT Devices",
abstract = "The Internet of Things (IoT) technology incorporates a large number of heterogeneous devices connected to untrusted networks. Nevertheless, securing IoT devices is a fundamental issue due to the relevant information handled in IoT networks. The intrusion detection system (IDS) is the most commonly used technique to detect intruders and acts as a second wall of defense when cryptography is broken. This is achieved by combining the advantages of anomaly and signature detection techniques, which are characterized by high detection rates and low false positives, respectively. To achieve a high detection rate, the anomaly detection technique relies on a learning algorithm to model the normal behavior of a node, and when a new attack pattern (often known as signature) is detected, it will be modeled with a set of rules. This latter is used by the signature detection technique for attack confirmation. Activating the anomaly detection technique simultaneously at each low-resource IoT device and all the time could generate a high-energy consumption. Thereby, we propose a game theoretic technique to activate anomaly detection technique only when a new attack's signature is expected to occur; hence, a balance between detection and false positive rates, and energy consumption is achieved. Even by combining between these two detection techniques, we observed that the number of false positives is still non null (almost equal to 5{\%}). Thereby, to decrease further the false positive rate, a reputation model based on game theory is proposed. Simulation results show that this lightweight anomaly detection outperforms current anomaly detection techniques, since in scaling mode (i.e., when the number of IoT devices and attackers are high) it requires low energy consumption to detect the attacks with high detection and low false positive rates, almost 93{\%} and 2{\%}, respectively.",
author = "Hichem Sedjelmaci and Senouci, {Sidi Mohamed} and Tarik Taleb",
year = "2017",
month = "10",
doi = "10.1109/TVT.2017.2701551",
language = "English",
volume = "66",
pages = "9381 -- 9393",
journal = "IEEE Transactions on Vehicular Technology",
issn = "0018-9545",
number = "10",

}

RIS - Lataa

TY - JOUR

T1 - An Accurate Security Game for Low-Resource IoT Devices

AU - Sedjelmaci, Hichem

AU - Senouci, Sidi Mohamed

AU - Taleb, Tarik

PY - 2017/10

Y1 - 2017/10

N2 - The Internet of Things (IoT) technology incorporates a large number of heterogeneous devices connected to untrusted networks. Nevertheless, securing IoT devices is a fundamental issue due to the relevant information handled in IoT networks. The intrusion detection system (IDS) is the most commonly used technique to detect intruders and acts as a second wall of defense when cryptography is broken. This is achieved by combining the advantages of anomaly and signature detection techniques, which are characterized by high detection rates and low false positives, respectively. To achieve a high detection rate, the anomaly detection technique relies on a learning algorithm to model the normal behavior of a node, and when a new attack pattern (often known as signature) is detected, it will be modeled with a set of rules. This latter is used by the signature detection technique for attack confirmation. Activating the anomaly detection technique simultaneously at each low-resource IoT device and all the time could generate a high-energy consumption. Thereby, we propose a game theoretic technique to activate anomaly detection technique only when a new attack's signature is expected to occur; hence, a balance between detection and false positive rates, and energy consumption is achieved. Even by combining between these two detection techniques, we observed that the number of false positives is still non null (almost equal to 5%). Thereby, to decrease further the false positive rate, a reputation model based on game theory is proposed. Simulation results show that this lightweight anomaly detection outperforms current anomaly detection techniques, since in scaling mode (i.e., when the number of IoT devices and attackers are high) it requires low energy consumption to detect the attacks with high detection and low false positive rates, almost 93% and 2%, respectively.

AB - The Internet of Things (IoT) technology incorporates a large number of heterogeneous devices connected to untrusted networks. Nevertheless, securing IoT devices is a fundamental issue due to the relevant information handled in IoT networks. The intrusion detection system (IDS) is the most commonly used technique to detect intruders and acts as a second wall of defense when cryptography is broken. This is achieved by combining the advantages of anomaly and signature detection techniques, which are characterized by high detection rates and low false positives, respectively. To achieve a high detection rate, the anomaly detection technique relies on a learning algorithm to model the normal behavior of a node, and when a new attack pattern (often known as signature) is detected, it will be modeled with a set of rules. This latter is used by the signature detection technique for attack confirmation. Activating the anomaly detection technique simultaneously at each low-resource IoT device and all the time could generate a high-energy consumption. Thereby, we propose a game theoretic technique to activate anomaly detection technique only when a new attack's signature is expected to occur; hence, a balance between detection and false positive rates, and energy consumption is achieved. Even by combining between these two detection techniques, we observed that the number of false positives is still non null (almost equal to 5%). Thereby, to decrease further the false positive rate, a reputation model based on game theory is proposed. Simulation results show that this lightweight anomaly detection outperforms current anomaly detection techniques, since in scaling mode (i.e., when the number of IoT devices and attackers are high) it requires low energy consumption to detect the attacks with high detection and low false positive rates, almost 93% and 2%, respectively.

U2 - 10.1109/TVT.2017.2701551

DO - 10.1109/TVT.2017.2701551

M3 - Article

VL - 66

SP - 9381

EP - 9393

JO - IEEE Transactions on Vehicular Technology

JF - IEEE Transactions on Vehicular Technology

SN - 0018-9545

IS - 10

ER -

ID: 16464524