Hybrid intelligent system for internet of things network attack detection and defense techniques

Abstract

As Internet of Things (IoT) devices become more integrated into critical infrastructures, they bring vulnerabilities to Denial-of-Service (DoS) attacks, necessitating robust strategies for detection and mitigation. Nowadays, more and more things are connected to the Internet, and the development of new devices is accelerating. The entire communication ecosystem requires security solutions at different levels since these networked smart items can interact with each other in unprotected environments. IoT technology differs from conventional networks in that it has its own set of characteristics, such as different resource limits and network protocol needs. The attacker exploits many security flaws in the IoT system to initiate various attacks. Given the rise in attacks, it is critical to address the implications of the Internet of Things. This paper introduces a novel Hybrid Intelligent System specifically designed to detect and mitigate DoS attacks effectively in IoT environments. Utilizing the CIC-Distributed Denial-of-Service (DDoS) 2019 dataset, the system integrates comprehensive pre-processing techniques, including min-max normalization and an improved SMOTE algorithm, to address the data imbalance. Feature extraction comprises the extraction of raw attributes and statistical measures, standard deviation, median, mean, and variance, Information Gain and Improved Holo-entropy using Spearman's Rank correlation. Classification is performed using a hybrid model that combines Improved LinkNet (ILN) and Long Short-Term Memory (LSTM) architectures, leveraging Cone activation functions to preserve spatial information and enhance training efficiency. Upon detection of attacks, the system identifies and mitigates attacker nodes using threshold-based methods. Practically used to improve security, adjust to new attack techniques, and reduce false alarms in smart cities, smart homes, industrial IoT, and healthcare. The ILN + LSTM Scheme exhibits an accuracy of 0.963, which is superior to the findings of the existing techniques.

Keywords

DoS attack improved data imbalance process improved holo-entropy improved linkNet long short-Term memory (LSTM)mitigation process

Get full access to this article

View all access options for this article.

References

Bhayo

Shah

Hameed

, et al. Towards a machine learning-based framework for DDOS attack detection in software-defined IoT (SD-IoT) networks. Eng Appl Artif Intell 2023; 123: 106432.

Manimurugan

Al-Mutairi

Aborokbah

, et al. Effective attack detection in internet of medical things smart environment using a deep belief neural network. IEEE Access 2020; 8: 77396–77404.

Mohammed

Hasan

Awwad

. Fusion-on-field security and privacy preservation for IoT edge devices: concurrent defense against multiple types of hardware trojan attacks. IEEE Access 2020; 8: 36847–36862.

Kandhro

Alanazi

Ali

, et al. Detection of real-time malicious intrusions and attacks in IoT empowered cybersecurity infrastructures. IEEE Access 2023; 11: 9136–9148.

Abughazaleh

Bin

Btish

. Dos attacks in IoT systems and proposed solutions. Int J Comput Appl 2020; 176: 16–19.

Al-Fayoumi

Al-Haija

. Capturing low-rate DDoS attack based on MQTT protocol in software defined-IoT environment. Array 2023; 19: 100316.

Bhayo

Shah

Hameed

, et al. Towards a machine learning-based framework for DDOS attack detection in software-defined IoT (SD-IoT) networks. Eng Appl Artif Intell 2023; 123: 106432.

Fathima

Devi

Faizaanuddin

. Improving distributed denial of service attack detection using supervised machine learning. Meas Sens 2023; 30: 100911.

Kishore

Ramamoorthy

Rajavarman

. ARTP: anomaly based real time prevention of distributed denial of service attacks on the web using machine learning approach. Int J Intell Networks 2023; 4: 38–45.

10.

Yakubu

Khan

, et al. Blockchain-based DDoS attack mitigation protocol for device-to-device interaction in smart home. Digital Commun Networks 2023; 9: 383–392.

11.

Fernando

Brayan

Florina

, et al. Enhancing intrusion detection in iot communications through ml model generalization with a new dataset (idsai). IEEE Access 2023; 11: 70542–70559.

12.

Thorat

Parekh

Mangrulkar

. TaxoDaCML: taxonomy based divide and conquer using machine learning approach for DDoS attack classification. Int J Inf Manage Data Insights 2021; 1: 100048.

13.

Nizamudeen

. Intelligent intrusion detection framework for multi-clouds–IoT environment using swarm-based deep learning classifier. J Cloud Comput 2023; 12: 134.

14.

Chen

Meng

Shan

, et al. A novel low-rate denial of service attack detection approach in ZigBee wireless sensor network by combining hilbert-huang transformation and trust evaluation. IEEE Access 2019; 7: 32853–32866.

15.

Almaraz-Rivera

Perez-Diaz

Cantoral-Ceballos

, et al. Toward the protection of IoT networks: introducing the LATAM-DDoS-IoT dataset. IEEE Access 2022; 10: 106909–20.

16.

Gad

Nashat

Barkat

. Intrusion detection system using machine learning for vehicular ad hoc networks based on ToN-IoT dataset. IEEE Access 2021; 9: 142206–17.

17.

Rani

Gill

Gulia

, et al. Design of an intrusion detection model for IoT-enabled smart home. IEEE Access 2023; 11: 52509–52526.

18.

Zeeshan

Riaz

Bilal

, et al. Protocol-based deep intrusion detection for dos and ddos attacks using unsw-nb15 and bot-iot data-sets. IEEE Access 2021; 10: 2269–2283.

19.

Ilango

. A feedforward–convolutional neural network to detect low-rate dos in iot. Eng Appl Artif Intell 2022; 114: 105059.

20.

Anthi

Williams

Javed

, et al. Hardening machine learning denial of service (DoS) defences against adversarial attacks in IoT smart home networks. Comput Secur 2021; 108: 102352.

21.

Gao

Peng

Xiao

, et al. Detection and mitigation of DoS attacks in software defined networks. IEEE/ACM Trans Networking 2020; 28: 1419–1433.

22.

Baig

Sanguanpong

Firdous

, et al. Averaged dependence estimators for DoS attack detection in IoT networks. Future Gener Comput Syst 2020; 102: 198–209.

23.

Kponyo

Agyemang

Klogo

, et al. Lightweight and host-based denial of service (DoS) detection and defense mechanism for resource-constrained IoT devices. Internet Things 2020; 12: 100319.

24.

Shareena

Ramdas

Haripriya

. Intrusion detection system for iot botnet attacks using deep learning. SN Comput Sci 2021; 2: 1–8.

25.

Fan

Wang

, et al. A secure IoT firmware update scheme against SCPA and DoS attacks. J Comput Sci Technol 2021; 36: 419–433.

26.

Benlloch-Caballero

Wang

Calero

. Distributed dual-layer autonomous closed loops for self-protection of 5G/6G IoT networks from distributed denial of service attacks. Comput Netw 2023; 222: 109526.

27.

Yaras

Dener

. IoT-based intrusion detection system using new hybrid deep learning algorithm. Electronics (Basel) 2024; 13: 1053.

28.

Singh

. Investigating the impact of data normalization on classification performance. Appl Soft Comput 2020; 97: 105524.

29.

Hengyu

. Improved SMOTE algorithm for imbalanced dataset. In: 2020 Chinese Automation Congress (CAC), 2020, pp.693–697.

30.

Toptaş

Hanbay

. Retinal blood vessel segmentation using pixel-based feature vector. Biomed Signal Process Control 2021; 70: 103053.

31.

Stiawan

Idris

Bamhdi

, et al. CICIDS-2017 dataset feature analysis with information gain for anomaly detection. IEEE Access 2020; 8: 132911–21.

32.

Sun

Chen

Qin

, et al. Holo-entropy based categorical data hierarchical clustering. Informatica 2017; 28: 303–328.

33.

Ruba

Tamilselvi

Beham

, et al. Segmentation of a brain tumour using modified LinkNet architecture from MRI images. Journal of Innovative Image Processing 2023; 5: 161–180.

34.

Wan

Yao

. Lmfrnet: a lightweight convolutional neural network model for image analysis. Electronics (Basel) 2023; 13: 129.

35.

Noel

Oswal

. A significantly better class of activation functions than ReLU like activation functions. arXiv preprint arXiv:2405.04459, 2024.

36.

Shen

Wang

Shen

, et al. {\cal U} boost: boosting with the Universum. IEEE Trans Pattern Anal Mach Intell 2011; 34: 825–832.

37.

Souza

Premebida

Araújo

. High-order conditional mutual information maximization for dealing with high-order dependencies in feature selection. Pattern Recognit 2022; 131: 108895.

38.

https://www.unb.ca/cic/datasets/cicev2023.html.