Recently, the Internet of Things (IoT) has been used in technology for different aspects to increase the efficiency and comfort of human life. Protecting the IoT infrastructure is not a straightforward task. There is an urgent need to handle different attack scenarios within the IoT smart environment. Attackers continuously targeted the modern aspects of technology, and trying abusing these technologies using complex attack scenarios such as Botnet attacks. Botnet attacks considered a serious challenge faces of the IoT smart environment. In this paper, we introduce a novel idea that capable of supporting the detecting of IoT-Botnet attack and in meanwhile to avoid the issues associated with the deficiencies of the knowledge-based representation and the binary decision. This paper aims to introduce a detection approach for the IoT-BotNet attack by using the Fuzzy Rule Interpolation (FRI). The FRI reasoning methods added a benefit to enhance the robustness of fuzzy systems and effectively reduce the system’s complexity. These benefits help the Intrusion Detection System (IDS) to generate more realistic and comprehensive alerts. The proposed approach was applied to an open-source BoT-IoT dataset from the Cyber Range Lab of the center of UNSW Canberra Cyber. The proposed approach was tested, evaluated and obtained a 95.4% detection rate. Moreover, it effectively smooth the boundary between normal and IoT-BotNet traffics because of its fuzzy-nature, as well as, it had the ability to generate the required IDS alert in case of the deficiencies of the knowledge-based representation.
KingJ. and AwadA.I., A distributed security mechanism for resource-constrained IoT devices, Informatica40(1), 2016.
2.
GendreauA.A. and MoormanM., Survey of intrusion detection systems towards an end to end secure internet of things, in 2016 IEEE 4th international conference on future internet of things and cloud (FiCloud). IEEE, (2016), pp. 84–90.
3.
ElrawyM.F., AwadA.I. and HamedH.F., Intrusion detection systems for iot-based smart environments: a survey, Journal of Cloud Computing7(1) (2018), 21.
4.
BezerraV.H., da CostaV.G.T., MartinsR.A., JuniorS.B., MianiR.S. and ZarpelaoB.B., Providing iot host-based datasets for intrusion detection research, in SBSeg 2018. SBC, (2018), pp. 15–28.
AlkasassbehM. and AlmseidinM., Machine learning methods for network intrusion detection, in 2018 - the 20th international conference on computing, communication and networking technologies ICCCNT, (2018), pp. 84–90.
7.
AlmseidinM., Al-kasassbehM. and KovacsS., Fuzzy rule interpolation and snmp-mib for emerging network abnormality, International Journal on Advanced Science, Engineering and Information Technology9(3) (2019), 735–744.
8.
AlmseidinM., AlzubiM., KovacsS. and AlkasassbehM., Evaluation of machine learning algorithms for intrusion detection system, in 2017 IEEE 15th International Symposium on Intelligent Systems and Informatics (SISY), Sep. (2017), pp. 000277–000282.
ZarpelaoB.B., MianiR.S., KawakaniC.T. and de AlvarengaS.C., A survey of intrusion detection in internet of things, Journal of Network and Computer Applications84 (2017), 25–37.
12.
ArringtonB., BarnettL., RufusR. and EsterlineA., Behavioral modeling intrusion detection system (bmids) using internet of things (iot) behavior-based anomaly detection via immunity-inspired algorithms, in 2016 25th International Conference on Computer Communication and Networks (ICCCN), Aug (2016), pp. 1–6.
13.
DandaJ.M.R. and HotaC., Attack identification framework for iot devices, in Information Systems Design and Intelligent Applications, S. C. Satapathy, J. K. Mandal, S. K. Udgata, and V. Bhateja, Eds. New Delhi: Springer India, (2016), pp. 505–513.
14.
HodoE., BellekensX., HamiltonA., DubouilhP., IorkyaseE., TachtatzisC. and AtkinsonR., Threat analysis of iot networks using artificial neural network intrusion detection system, in 2016 International Symposium on Networks, Computers and Communications (ISNCC), May (2016), pp. 1–6.
15.
SurendarM. and UmamakeswariA., Indres: An intrusion detection and response system for internet of things with 6lowpan, in 2016 International Conference on Wireless Communications, Signal Processing and Networking (WiSPNET). IEEE, (2016), pp. 1903–1908.
MahdavinejadM.S., RezvanM., BarekatainM., AdibiP., BarnaghiP. and ShethA.P., Machine learning for internet of things data analysis: A survey,pp, Digital Communications and Networks4(3) (2018), 161–175.
18.
Lopez-MartinM., CarroB., Sanchez-EsguevillasA. and LloretJ., Conditional variational autoencoder for prediction and feature recovery applied to intrusion detection in iot, Sensors17(9) (2017), 1967.
19.
Garcia-FontV., GarriguesC. and Rifa-PousH., Attack classification‘ schema for smart city wsns, Sensors17(4) (2017), 771.
20.
MidiD., RulloA., MudgerikarA. and BertinoE., Kalisa system for knowledge-driven adaptable intrusion detection for the internet of things, in 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS). IEEE, (2017), pp. 656–666.
21.
PrabavathyS., SundarakanthamK. and ShalinieS.M., Design of cognitive fog computing for intrusion detection in internet of things, Journal of Communications and Networks20(3) (2018), 291–298.
22.
AbhishekN.V., LimT.J., SikdarB. and TandonA., An intrusion detection system for detecting compromised gateways in clustered iot networks, in 2018 IEEE International Workshop Technical Committee on Communications Quality and Reliability (CQR). IEEE, (2018), pp. 1–6.
23.
AmouriA., AlaparthyV.T. and MorgeraS.D., Cross layer-based intrusion detection based on network behavior for iot, in 2018 IEEE 19th Wireless and Microwave Technology Conference (WAMICON), April (2018), pp. 1–4.
24.
RonenE., ShamirA., WeingartenA.-O. and OFlynnC., Iot goes nuclear: Creating a zigbee chain reaction, in 2017 IEEE Symposium on Security and Privacy (SP). IEEE, (2017), pp. 195–212.
25.
KoroniotisN., MoustafaN., SitnikovaE. and TurnbullB., Towards the development of realistic botnet dataset in the internet of things for network forensic analytics: Bot-iot dataset, Future Generation Computer Systems100 (2019), 779–796.
26.
AlmseidinM. and KovacsS., Intrusion detection mechanism using fuzzy rule interpolation, Journal of Theoretical and Applied Information Technology96(16) (2018), 5473–5488.
27.
AlmseidinM., PillerI., Al-KasassbehM. and KovacsS., Fuzzy automaton as a detection mechanism for the multi-step attack, International Journal on Advanced Science, Engineering and Information Technology9(2), 2019.
28.
ShanmugavadivuR. and NagarajanN., Network intrusion detection system using fuzzy logic, Indian Journal of Computer Science and Engineering (IJCSE)2(1) (2011), 101–111.
29.
KhattakS., RamayN.R., KhanK.R., SyedA.A. and KhayamS.A., A taxonomy of botnet behavior, detection, and defense, IEEE Communications surveys & Tutorials16(2) (2014), 898–924.
30.
SilvaS.S., SilvaR.M., PintoR.C. and SallesR.M., Botnets: A survey, Computer Networks57(2) (2013), 378–403.
31.
JohanyakZ.C., Sparse fuzzy model identification matlab toolox-' rulemaker toolbox, in 2008 IEEE International Conference on Computational Cybernetics. IEEE, (2008), pp. 69–74.
32.
JohanyakZ.C. and KovacsS., Sparse fuzzy system generation by rule' base extension, in 2007 11th International Conference on Intelligent Engineering Systems. IEEE, (2007), pp. 99–104.
33.
BaranyiP., KoczyL.T. and GedeonT.D., A generalized concept' for fuzzy rule interpolation, IEEE Transactions on Fuzzy Systems12(6) (2004), 820–837.
34.
JohanyakZ. C. and KovacsS., Fuzzy rule interpolation by the' least squares method, in 7th International Symposium of Hungarian Researchers on Computational Intelligence (HUCI 2006)2425 (2006), pp. 495–506.
35.
BranchJ., BivensA., ChanC.Y., LeeT.K. and SzymanskiB.K., Denial of service intrusion detection using time dependent deterministic finite automata, in Proc. Graduate Research Conference, (2002), pp. 45–51.
36.
YuJ., LeeH., KimM.-S. and ParkD., Traffic flooding attack detection with snmp mib using svm, Computer Communications31(17) (2008), 4212–4219.
37.
ObeidatI., HamadnehN., AlkasassbehM., AlmseidinM. and AlZubiM., Intensive pre-processing of kdd cup 99 for network intrusion classification using machine learning techniques, 2019.
38.
AlkasassbehM., Al-NaymatG., HassanatA. and AlmseidinM., Detecting distributed denial of service attacks using data mining techniques, International Journal of Advanced Computer Science and Applications7(1) (2016), 436–445.
