Sage Journals: Discover world-class research

Abstract

An exponential growth of users demands ubiquitous connectivity, which requires the integration of new technology. Therefore, Device to Device (D2D) communication has been considered a promising technology that utilizes effective and efficient communication. Even though numerous studies have been conducted for establishing secure D2D communication, however, existing techniques face challenges like privacy, security threats, and poor generality. To overcome these issues a novel Deep-MAD model is proposed to preserve data privacy along with its access control in the D2D network and multiple attack detection in a fog environment. A Fully Homomorphic Elliptic Curve Cryptography (FHECC) is introduced to transmit data securely in a D2D network. The data owner uses FHECC algorithm to encrypt the plain text into cipher text before storing it on the fog. Whenever the user requests data from the fog, the fog service provider confirm the user’s access control. Furthermore, the deep learning-based Bi-LSTM is used to differentiate the device as an authorized or unauthorized user. If the IP address is genuine then the inverse FHECC is used to decrypt the data for authorized users. Otherwise, the particular device is blocked and it is sent for further verification for classifying the types of attacks. The effectiveness of the proposed strategy is examined using several parameters, such as computational complexity, scalability, accuracy, and Execution time. The proposed technique improves the overall computational overhead of 31.77, 9.34, and 4.67 better than AKA protocol, lightweight cipher, and FHEEP respectively.

Keywords

Bi-LSTM device-to-device communication cryptography security fog environment

1 Introduction

With the explosive growth of Internet-connected devices, user demands for broadband are undergoing an unprecedented rise [1]. According to Cisco, the global mobile data traffic had increased sevenfold between 2016 and 2021, reaching 49 exabytes per month by 2021. To resolve this issue, traditional solutions have been proposed, including the use of small cell sizes and pico- and femtocells, but their high deployment costs have prevented their widespread deployment. A device-to-device communication method boosts network speed and functionality by moving data between devices [2]. To meet this ever-increasing demand D2D communication has been suggested as a way to improve network performance and user experience [3]. In a recent report, D2D communications have been considered a promising technique since Release 9 of the Long-Term Evolution Advanced (LTE-Advanced) standard by the Third-Generation Partnership Project (3GPP) [4].

D2D communication protocols enable devices to communicate directly with one another without the use of an access point or base station [5]. In LTE-Direct, devices capable of D2D communication communicate with each other using a secure transmission protocol [6]. D2D communication allows devices to communicate directly with each other, which helps to sort out issues like congestion, interference, scarce spectrum, and coverage issues [7]. Moreover, it is capable of supporting local data communication services via unicast, group cast, and broadcast communication [8]. Figure 1 illustrates the D2D application.

Fig. 1

D2D applications.

Figure 1 illustrates some samples of D2D applications. Sometimes it can act as the base station and may help transmit data between two devices. It will be more helpful in multimedia data transitions because, due to the high fast transmission between two devices with higher bandwidth, low latency, better efficiency, and high spectral efficiency [9]. To enable D2D communication, short-range technologies are utilized such as Long-Term Evolution (LTE) Wi-Fi, and Bluetooth [10].

Despite this, traditional D2D communication technology is vulnerable to several attacks, leading to critical security challenges [11]. As a result of the lack of trusted infrastructure, it is the users’ responsibility to protect their sensitive data from a variety of attacks and to ensure their communication is secure [12]. Multiple cyberattacks, including Man in the Middle (MITM), Zeroday, Phishing, Distributed Denial of Service (DDoS), and XXS attacks, can cause rapid battery drain and make D2D devices more vulnerable to hardware failures which will affect the mobile network performance and operations [13]. Therefore, it is important to tackle the security challenges involved in D2D communication.

Sensitive data during transmission should be protected from unauthorized access to improve its security. Therefore, a wide variety of key generation, encryption, and decryption mechanisms are developed to ensure cloud authentication. However, it still faces issues like increased computational complexity, time consumption, and security vulnerabilities.

D2D communication is a peer-to-peer form of communication that eliminates the need for intermediate nodes. There are many advantages to D2D communication, such as: (i) extending the coverage of each cell in a cellular network, and (ii) transmitting multiple data over the same radio frequency. These advantages have led to the inclusion of D2D communication in the 5G network, such as the LTE-advanced network (4G). However, D2D communication through mobile phone networks involves considerable security problems.D2D communication involves device discovery, link setup, and data transmission. There is no authentication process for confirming the device’s identity in this process.

Furthermore, existing technologies for D2D communication do not use encryption to ensure confidentiality and message authentication to ensure integrity in the communication process. Also, the existing method does not detect and classify the types of attacks during transmission. To overcome these issues this paper proposed a novel Deep-MAD model to preserve data privacy along with its access control in the D2D network and multiple attack detection in a fog environment.

The following are the key contributions of this work.

The primary purpose of this work is to present a novel Deep-MAD model to preserve data privacy along with its access control in the D2D network and multiple attack detection in a fog environment.

A Fully Homomorphic Elliptic Curve Cryptography (FHECC) is introduced to transmit data securely in a D2D network.

The deep learning-based Bi-LSTM is used to differentiate the device as an authorized or unauthorized user and detect the types of attack.

The performance evaluation of the proposed Deep-MAD model is done against the existing algorithms to claim its superiority based on computational complexity, scalability accuracy, and Execution time.

The remainder of the research paper was structured as follows: the related works are summarized in Section 2. Section 3 discusses the proposed methodology. Section 4 includes the result and discussion of the proposed model. Section 5 holds the conclusion and future work.

2 Related works

D2D communications have many benefits, but security is the primary issue that is essential to address before the technology becomes widely used and accepted. In D2D communications, an increasing number of studies have concentrated on authentication and key management techniques. This section presents a summary of some of the most recentstudies.

In 2023 Rani, S.J., et al., [14] developed an ML-based DDoS attacks detection and prevention in D2D communication. To validate the test CICDDoS2019 and D2D Network-specific Slowloris datasets are utilized. The ML techniques such as Light GBM, Ada Boost, XGBoost, and Random Forest, are used for attack detection. The Random Forest achieves better accuracy, where the D2D device’s resources are mostly linked to the object’s lifespan andcapabilities.

In 2023 Tayade, P. and Vijaya Kumar, P., [15] developed a D2D-based secure authentication protocol. In the authentication stage, public and private secret keys are generated using the ECC and Elliptic Curve Diffie-Hellman (ECDH) algorithm. For the creation of associated keys, a hash-based message authentication code (HMAC) is utilized. A quantum channel is used to ensure the security of this transmission.

In 2022 Nyangaresi, V.O et al., [16] presented a session authentication and secure key agreement mechanism for IoT devices. The suggested model utilized a lightweight asymmetric Elliptic curve cryptography (ECC). This model provides lower computation, high stability, turnaround time, and moderate communication costs Yet this technique does not implement in a real IoT communication environment.

In 2022 Hajian, R., et al., [17] presented an Authentication and Key Agreement in secure anonymous D2D for IoT. In the registration step, a D2D mutual AKA protocol was created that did not require a secure channel to generate paired private and public keys. The suggested protocol utilizes the Scyther tool and BAN logic to accomplish strict formal security verification. This model provides better performances for communication, computation costs, and energy consumption.

In 2022 Kishore et al., [18] presented an ECC-based security mechanism for D2D communications in 5G networks. The mobile phone’s hardware, the SIM card provided by the mobile operator, and the SIM storage, which is used to store signature data or private keys. This method offers an accurate representation of secure D2D communication on 5G networks.

In 2022 Khoshafa, M.H., et al., [19] developed a Relay selection for physical layer security in D2D underlay communications. To secure the D2D transmission, both optimum and poor relay selections are used. The eavesdropper amplifies the wiretapped signals using either maximal-ratio combining or selective combining. The system parameter on the SOP is better understood due to the asymptotic results.

In 2021 Suraci, C. et al., [20] presented a secured and Trusted D2D communications to assist a trusted multicast service delivery in 5G-oriented networks through an improved Conventional Multicast Scheme. The best relay node is selected based on the selection of trustworthy and effective D2D transmitters. Furthermore, the Diffie-Hellman Key Exchange (DHKE) algorithm is used to secure data delivered via D2D interactions. The suggested strategy efficiently chooses relay nodes, improving network performance.

In 2021 Pothumarti, R., et al., [21] developed a lightweight cipher technique that improves the security, access control, and authentication that is implemented on a multi-layer communication to resolve heterogeneity and scalability problems. The suggested framework also included a dynamic key generation mechanism that uses a set of distinct keys and entropy. This method lowers the cost of computation and communication without compromising security. Yet this model requires a high-speed and reliable environment.

In 2021 Noura, H.N., et al., [22] developed a D2D MIMO technique for PLS cipher solution which is based on the dynamic key structure and includes various parameters such as a private key and a physical channel. Input frames are updated with cipher primitives, and frame symbols are updated with selection cipher primitives. The updating procedure aims to increase security and guarantee the avalanche effect. The suggested model attains high efficiency and high immunity.

In 2021 Gaba, G.S., et al., [23] developed an efficient mutual authentication and key exchange scheme for WiFi Direct. A commit/open pair and the Diffie Hellman key exchange method form the foundation of the suggested approach. The suggested protocol prevents DoS and MITM attacks from happening during the important agreement and discovery phases. This model may provide a comprehensive security package and is readily integrated into WiFi Direct-enabled devices.

In 2020 Zheng, W et al., [24] developed a task allocation and node classification based on a Cooperative-routing approach for social networks. It allows the message carrier to find the next hop by rationally utilizing the idle resources of other nodes in its online community to find the next hop. This model enhances the network communication, yet does not provide secure information transmission.

In 2020 Li, Z., et al., [25] presented a social network routing technique based on triangular fuzzy layers and multi-layer clustering. The best message transmission node is chosen using the fuzzy analytic hierarchy process model, which analyses social similarity and trajectory similarity. The trajectory of each node is calculated using the multi-level clustering model based on time. Yet this model computes more power and cache space.

In 2019 Abro, A., et al., [26] presented a lightweight elliptic-ElGamal-based authentication technique employing PKI in D2D communication for lowering M-I-T-M and decreasing communication expenses. Herein The secret key is exchanged via Elgamal once the key pair is chosen using ECC. To assess the veracity and secrecy of the suggested model, Pollard’s rho and Baby Step, Giant Step (BSGS) techniques are utilized. The suggested model performs better while improving security.

2.1 Differences between the proposed and existing techniques

The important findings from their research as well as the differences between the existing and proposed technique are given below.

Unlike the proposed Deep-MAD model many of the algorithms did not consider confidentiality and message authentication for integrity during communication

The proposed method not only uses security while transmission but also detects and classifies the types of attacks.

Computational complexity is another aspect that makes existing techniques unsuitable for various real-time applications. However, the proposed model was found to be computationally efficient.

From the above literature survey, various encryption-based security techniques are used in D2D communication. There have been many previous studies showing the benefits of D2D for security protection, but few have explored how this protection can be maximized by selecting and controlling the access of the D2D pairs. Due to the lack of secure and privacy-preserving solutions, D2D group communication could be used for a limited number of applications. The overall literature survey highlights several promising avenues for future research on D2D communication in 5G networks.

3 Proposed Deep-MAD model

In this work, a novel Deep-MAD model to preserve data privacy along with its access control in the D2D network and multiple attack detection in a fog environment. Initially, a security protocol based on Fully Homomorphic Elliptic Curve Cryptography (FHECC) is introduced to transmit data securely in a D2D network.

The data owner uses FHECC algorithm to encrypt the plain text into cipher text before storing it on the fog. Whenever the user requests data from the fog, the fog service provider confirm the user’s access control. When a user requests data from the fog, the fog service provider confirms the user’s access control policy to enable the data’s restricted access. Furthermore, the deep learning-based Bi-LSTM is used to differentiate the device as authorized or hacker. If the IP address is genuine then the inverse FHECC is used to decrypt the decrypted data and provide it to the authorized users. Otherwise, the particular device is blocked and it is sent for further verification for classifying the types of attacks. The overfall workflow is shown in Fig. 2

Fig. 2

The schematic representation of the proposed Deep MAD model.

In this research, fog nodes act as relay nodes to facilitate communications between devices, particularly if the devices are not in direct radio range of one another. The fog nodes are typically located between and closer to the devices, and they have the advantage of processing and forwarding data with low latency. In this scenario, a fog node positioned strategically could act as a relay, transferring data from one device to another despite obstacles, interference, or signal attenuation, and improving the quality of communication. A fog node can also provide data caching, security, and computation offloading, making it a versatile D2D communication component. The ability of these devices to act as relays enhances network performance and allows seamless communication among devices without compromising networksecurity.

3.1 Security protocol

In a D2D network, devices frequently need to find network resources throughout the entire network, and these resources normally contain sensitive information. Direct transmission of the necessary data to the requesting device increases the risk of privacy disclosure and creates an unsecured D2D network. Firstly, private data must be encrypted in the D2D network before it can be sent to the device that requested it. FH-ECC is added to the D2D network to meet the aforementioned requirements.

The FH-ECC is used to transmit data securely between nodes. For encryption in a fully homomorphic model, single symmetric keys are commonly used. The proposed approach makes use of an asymmetric Fully Homomorphic algorithm, in which the ECC varies proportionally to the Fully Homomorphic functions. The key size of the proposed model is 512 bits. The proposed FH-ECC flowchart is illustrated in Fig. 3.

Fig. 3

Architecture of the proposed FH-ECC.

Data requests are initially made by the user to fog, and then access policies are verified by the service provider to restrict data access. The public and private key pairs are created using random bits once access to the system has been restricted. The data is then encrypted using the key to create ciphertext, which is converted to ciphertext by applying the ECC algorithm. The cipher data is then processed by FH operations before being stored in the Fog. Decryption is performed after the encrypted data has been forwarded to the requested user.

3.1.1 Encryption

Encryption is a technique for encrypting plain text to offer a higher level of security. Security issues are classified based on their complexity using the ECC. This method has the advantage of only requiring an alphabetical table and key. Additionally, it enhances the data solution and permits secure key transmission for communications between the source and destination nodes.

A FH operation can be used to perform computations on both encrypted data and random data. To boost the security of data transmission, FH-ECC increases data packet security while lowering packet loss. This method’s improved security and quicker processing are its two main benefits.

A private key pr_k and input data (I_d) is given as an input, then a generator function is used to generate the public key pu_k. Consequently, a random bit is used to generate a cipher, and the input data (I_d) is encrypted using a random number, which is created according to a point of the curve. A homomorphic operation is then applied to the set of encrypted data using its multiplicative property. Finally, the encrypted data is uploaded on Fog.

Algorithm for FH-ECC Encryption
Input: Private Key (pr_k) Input data (I_d)
Output: Encrypted data (Ed_n)
Step 1: Generation of Public keypu_k
Step 2: Mapping Function Over the curve is extracted using pu_k=pr_k* gn_f, where gn_frepresents generator function
Step 3: Generation of cipher text C_t
C_t=df_n* gn_f, where df_n represents the random number
Step 4: Generation of encrypted data Ed_n
Ed_n=(df_n*gn_f) + (n_i, s_p), where s_p represents the point of the curve
Step 5: The FH scheme applies to the set of Ed_n, then
Ed_n =(df_n+gn_f) $\sum_{j = 1}^{f} .$ (d_j, P_c)
Step 6: Apply the property of multiplication to implement a homomorphic scheme
FH-ECC→F_(*/)
Step 7: For encrypted data, Evaluate the three coefficients x, y, and z then
FH_X=FH-ECC (x₁, x₂, x₃)
Step 8: Evaluate FH_y =FH-ECC (y₁, y₂, y₃)
Step 9: Generate FH_Z=FH-ECC (d_{F _b}, z)
Step 10: The encrypted data FH_Z (Ed_n) is finally uploaded to the Fog environment

3.1.2 Decryption

The original data can be retrieved from the data when it reaches the receiver after it is decrypted. Herein, FH is used to separate the cipher data from the encrypted data, followed by ECC decryption to recover the plain text. The encrypted data E_d and the private key pr_k are the inputs for the ECC decryption method. Using the private key, this technique decodes the cipher text from encrypted text. The generator function gn_f random number df_n is then fetched using pr_k. A homomorphic method creates the original text from the decrypted data after the point-on-curve method has been used to decrypt the data. The delivery ratio increases and packet drops are reduced as a result.

3.2 Classification and detection of multiple attacks using Bi-LSTM

In this section, the deep learning-based Bi-LSTM is used to differentiate the device as an attack or non-attack. If the IP address is genuine then the inverse FHECC is used to decrypt the decrypted data and provide it to the authorized users. Otherwise, the particular device is blocked and it is sent for further verification for classifying the types of attacks based on Bi-LSTM. The LSTM model can be used as a building block for large-scale neural networks. In contrast to RNN, LSTM avoids gradient problems by efficiently using memory. Yet, a bi-directional LSTM accepts input in both directions, either forward or backward which makes it different from a consistent LSTM. LSTM models can only be determined by using inputs that have already been processed, as information propagates forward. Meanwhile, Bi-LSTM is capable of handling contextual data efficiently since it considers both past and future data.

The LSTM classifier is composed of the memory cell, output gate, input gate, and forget gate as illustrated in Fig. 4.

Fig. 4

Bi LSTM architecture.

The input data is either temporarily or permanently retained in the memory cell. While the Forget Gate maintains data holding in the LSTM cell, the Input Gate controls data volume. The output activation for the gate can be evaluated and prepared by managing the data in the LSTM layer cell. Equations can be used to determine how input, hidden states, and various gates relate to one another. $i_{n} = β ({weight}_{i} * [b_{s - 1}, k_{n}^{'}] + {bias}_{i})$ (1)

$f_{n} = β ({weight}_{f} * [b_{s - 1}, k_{n}^{'}] + {bias}_{f})$ (2) $o_{n} = β ({weight}_{o} * [b_{s - 1}, k_{n}^{'}] + {bias}_{o})$ (3)

$\begin{matrix} T_{n} = f_{n} * T_{n - 1} + i_{n} * tanh \\ ({weight}_{a} * [b_{s - 1}, k_{n}^{'}] + {bias}_{a}) \end{matrix}$ (4) $L_{n} = o_{n} * tanh (a_{n})$ (5)

Where, o_n, f_n, i_n, and T_ndenotes the output gate, forget gate, input gate, and the cell at time t; $k_{n}^{'} and L_{n}$ denotes the input and hidden vectors at time t. When t^th time originates, the input k_n from which the LSTM layers are paralleled in reverse and forward directions to handle the opposite direction, and the output is combined. Similar to conventional LSTM neural networks, LSTMs with two parallel layers work by storing information in both ways. Bi-LSTM keeps input data from both preceding and subsequent sequences by using two modes of direction.

The second LSTM receives the first LSTM’s output series as input, and the final units of the forward and backward layers are concatenated with the second LSTM’s output series as shown below: $x_{output} = {x_{forward}, x_{backward}}$ (6)

A major goal of the global max pooling layer is to obtain as many features from the temporal data as possible. The final feature maps are frequently transformed into one-dimensional arrays using the flatten layer. Full-connected layers receive the input from the one-dimensional array. All neurons between layers in a feed-forward neural network are connected via the FC layer. The output layer calculates the likelihood of identifying and classifying multiple attacks by adding the bias vectors, weight matrices are multiplied by the inputs, and multiplying the result by the inputs

4 Result and discussion

In this section, the results of the proposed Deep MAD model are discussed. The implementation was carried out with the Network Simulator (NS2), which had a 4-GB RAM and an Intel Core processor. This section also describes the results of the proposed and existing model and their performance under several efficiency measures, such as security mechanisms and network analysis. Table 1 provides the default simulation parameters. In the simulation 500 nodes are placed in 300 m×300 m. Nodes move randomly in the network at different speeds.

Table 1
Simulation parameters

Parameters Value

Network Area 300 m×300m

Nodes 500

Radio Range 250 m

Simulation time 60ms

Data packet length 600 bytes

Transmission Power 1.4 (W)

Mobility model Random Way point

Parameters	Value
Network Area	300 m×300m
Nodes	500
Radio Range	250 m
Simulation time	60ms
Data packet length	600 bytes
Transmission Power	1.4 (W)
Mobility model	Random Way point

Figure 5(a) illustrates the unreliable D2D connection as the UEs (e.g., UEx, UEy) are separated by quite a distance and are not within each other’s communication range. Figure 5(b) depicts the reliable d2d connection that meets the aforesaid requirements, the UEs connect jointly via device discovery and link setup. Figure 5(c) shows the attack in a d2d connection. The red symbol denotes the attack in the d2d connection.

Fig. 5

(a) An unreliable D2D Connection. (b) A reliable D2D Connection. (c) Attack in D2D Connection.

4.1 Performance of security mechanism

Execution time (Exe_time)

Exe_time can be defined as the time required to compute data storage access. It also defines how long the system takes to store the encrypted data and access it from a server.

Figure 6 shows the execution time of the existing ECC [18], MIMO [22], FHEEP [26], and proposed technique based on varying points. As shown in the analysis, the proposed model effectively reduces the overall execution time in seconds when compared to the existing method.

Fig. 6

Performance of Execution time.

Encryption time (E_time)

E_time is the measure of time required to encrypt the given data, which is represented in milliseconds, and computed as shown in Equation (7) $(E_{time}) = ({Finishing}_{time} - ({Intinial}_{time})$ (7)

Figure 7 shows the encryption time of the proposed and existing mechanisms. This technique analyzes how encryption time can increase with a linear increase in key size (bits). The proposed method requires less encryption time compared to other methods, as determined by the analysis.

Fig. 7

Performance of Encryption time.

Decryption time (D_time)

D_time is the measure of time required to decrypt the encrypted data that is represented in milliseconds, and computed as shown in Equation (8)

$(D_{time}) = ({Finishing}_{time} - ({Intinial}_{time})$ (8)

Figure 8 illustrates the decryption time of the proposed and existing technique concerning varying key sizes (bits). Thus, the decryption time can increase linearly with the key size.

Fig. 8

Performance of decryption time.

4.2 Performance of security mechanism

4.2.1 Efficiency evaluation

The efficiency of the proposed protocol can be measured using performance metrics such as false alarm rate, accuracy, F1 score, recall or detection rate, and precision, $Precision = \frac{TP}{TP + FP}$ (9) $detectionrate = \frac{TP}{TP + FN}$ (10) $F 1 score = 2 (\frac{Precision * Recall}{Precision + Recall})$ (11) $Accuracy = \frac{TP + TN}{TP + TN + FP + FN}$ (12) $FAR = \frac{FP}{FP + TN}$ (13)

Table 2 illustrates the detection of attacks with specific parameters. This model detects attackers and non-attackers, which helps the system while preserving security. The average accuracy, detection rate/recall, precision, and F1 score of the proposed technique are 98.15%, 98.25, 97.55, and 97% respectively.

Table 2

Efficiency metrics of the detection of attacks

Classes	Accuracy	Precision	Recall	F1 score
Attack	97.6	96.3	97.4	95.6
Non - Attack	98.7	98.8	99.1	98.4

Table 3 illustrates some sample classifications of attack with specific parameters. The average accuracy, precision, detection rate/recall, and F1 score of the proposed model are 98.15%, 96.56, 97.48, and 96.58%.

Table 3

Performance metrics of the classification of attacks

Attacks	Accuracy	Precision	Recall	F1 score
DDOS	98.3	98.6	96.4	97.9
Man in Middle	98.6	97.4	97.3	97.4
Zeroday attack	97.7	95.3	95.6	95.1
Phishing attack	98.4	97.5	97.3	96.2
XXS attack	97.8	98.6	96.2	96.3

The accuracy curve is presented in Fig. 9 as the range of accuracy is shown in the vertical axis and the number of epochs is shown in the horizontal axis. When epochs are increased, accuracy improves. The epoch and loss range in Fig. 6 indicates that when the epochs are raised, the loss of the proposed model is reduced. So, the detected accuracy of 98. 15% of the proposed models are highly reliable for the detection and classification of attacks.

Fig. 9

Performance curve of the proposed model.

Fig. 10

Loss curve of the proposed model.

4.2.2 Comparison evaluation

The proposed deep neural network model is compared with existing deep learning methods namely ANN, RNN, and LSTM based on some samples of different types of attacks such as DDOS, Man in Middle, Zeroday attack, Phishing attack, and XXS attack. The proposed deep learning approach achieves the highest recognition accuracy compared to the standard deep learning algorithms.

Table 4 display the comparison result of the proposed model to other traditional deep learning techniques based on Man in the Middle, DDOS, Phishing attacks, Zeroday attacks, and XXS attacks. It is clear from the tables that the proposed technique attains better accuracy than the other traditional deep learning models.

Table 4
Comparison analysis of traditional models based on different types of attacks

Attacks Model Accuracy Precision Recall F1 score

DDOS ANN 92.9 93.4 92.4 93.6

RNN 94.3 92.1 93.1 94.6

LSTM 95.3 94.7 94.2 95.3

Proposed 98.3 98.6 96.4 97.9

Man in Middle ANN 93.9 96.4 95.1 96.2

RNN 94.2 95.3 95.4 95.5

LSTM 95.6 95.8 96.3 95.7

Proposed 98.6 97.4 97.3 97.4

Zeroday attack ANN 88.4 87.4 86.4 87.5

RNN 89.4 89.1 90.1 89.2

LSTM 94.5 92.5 90.6 88.4

Proposed 97.7 95.3 95.6 95.1

Phishing attack ANN 87.4 88.2 87.6 86.1

RNN 90.4 91.2 90.3 89.7

LSTM 93.3 92.1 93.9 91.2

Proposed 98.4 97.5 97.3 96.2

XXS attack ANN 92.7 90.7 91.1 92.3

RNN 94.4 93.4 92.7 90.9

LSTM 95.6 94.8 93.4 93.8

Proposed 97.8 98.6 96.2 96.3

Attacks	Model	Accuracy	Precision	Recall	F1 score
DDOS	ANN	92.9	93.4	92.4	93.6
	RNN	94.3	92.1	93.1	94.6
	LSTM	95.3	94.7	94.2	95.3
	Proposed	98.3	98.6	96.4	97.9
Man in Middle	ANN	93.9	96.4	95.1	96.2
	RNN	94.2	95.3	95.4	95.5
	LSTM	95.6	95.8	96.3	95.7
	Proposed	98.6	97.4	97.3	97.4
Zeroday attack	ANN	88.4	87.4	86.4	87.5
	RNN	89.4	89.1	90.1	89.2
	LSTM	94.5	92.5	90.6	88.4
	Proposed	97.7	95.3	95.6	95.1
Phishing attack	ANN	87.4	88.2	87.6	86.1
	RNN	90.4	91.2	90.3	89.7
	LSTM	93.3	92.1	93.9	91.2
	Proposed	98.4	97.5	97.3	96.2
XXS attack	ANN	92.7	90.7	91.1	92.3
	RNN	94.4	93.4	92.7	90.9
	LSTM	95.6	94.8	93.4	93.8
	Proposed	97.8	98.6	96.2	96.3

The effectiveness of the proposed model was compared to the classic DL models based on the classification results shown in Fig. 11, in which the proposed model achieves a better accuracy rate of 98.15%. It is evident from the findings that the proposed technique produces higher accuracy on both training and testing datasets while having a reduced false alarm rate.

Fig. 11

FAR comparison of proposed with traditional techniques.

Figure 12 shows the Computational overhead comparison with existing and proposed techniques. The proposed Deep MAD technique attains a lower computational overhead than the existing techniques. The proposed technique improves the overall computational overhead of 31.77, 9.34, and 4.67 better than AKA protocol, lightweight cipher, and FHEEP respectively.

Fig. 12

Computational overhead comparison with existing and proposed techniques.

4.3 Time complexity

The time complexity of the proposed Deep-MAD model is o (n³). The values are transformed into global values if there are more than three or four relay nodes. Herein n represents the number of devices. This process is o (n) in terms of complexity and o (nlogn) in terms of overall communication expense.

5 Conclusion

In this work, a novel Deep-MAD model to preserve data privacy along with its access control in the D2D network and multiple attack detection in a fog environment. A Fully Homomorphic Elliptic Curve Cryptography (FHECC) is introduced to transmit data securely in a D2D network. The data owner uses FHECC algorithm to encrypt the plain text into cipher text before storing it on the fog. Whenever the user requests data from the fog, the fog service provider confirm the user’s access control. Furthermore, the deep learning-based Bi-LSTM is used to differentiate the device as an authorized or unauthorized user. If the IP address is genuine then the inverse FHECC is used to decrypt the data for authorized users. Otherwise, the particular device is blocked and it is sent for further verification for classifying the types of attacks. The limitation of the proposed Deep-MAD model does not handle the multi-owner nature. This limitation will be considered as a future work for extending our proposed system.

References

Adnan

M.H.

and Ahmad Zukarnain

, Device-to-device communication in 5G environment: Issues, solutions, and challenges, Symmetry 12(11) (2020), 1762.

Borgohain

and Choudhury

, A lightweight D2D authentication protocol for relay coverage scenario in 5G mobile network, Computer Networks 225 (2023), 109679.

Chaithanya

D.J.

and Anitha

, Enhancing Security in Device-To-Device Communication Of 5G Networks Through Hybrid Method Using AES And Huffman Encoding, Journal of Namibian Studies: History Politics Culture 35 (2023), 1221–1238.

Malik

P.K.

, Wadhwa

D.S.

and Khinda

J.S.

, A survey of device-to-device and cooperative communication for the future cellular networks, International Journal of Wireless Information Networks 27(3) (2020), 411–443.

Chen

, Zhou

, Zhao

, Shen

and Sun

, Energy-efficient resource allocation for secure D2D communications underlaying UAV-enabled networks, IEEE Transactions on Vehicular Technology 71(7) (2022), 7519–7531.

Areqi

M.A.

, Zahary

A.T.

and Ali

M.N.

, State-of-the-art device-to-device communication solutions, IEEE Access.

Chow

M.C.

and Ma

, A lightweight traceable D2D authentication and key agreement scheme in 5G cellular networks, Computers and Electrical Engineering 95(2023) (2021), 107375.

Shah

S.W.H.

, Mian

A.N.

and Crowcroft

, Statistical QoS guarantees for licensed-unlicensed spectrum interoperable D2D communication, IEEE Access 8 (2020), 27277–27290.

Kochhar

, Chaudhari

N.S.

and Gupta

, December. SAFE: Secure and Fast Key Establishment for Resource Constrained Devices in Device-to-Device Communications, In International Conference on Machine Learning, Image Processing, Network Security and Data Sciences (2022), 293–307.

10.

Panicker

J.G.

, Salehi

A.S.

, Rudolph

Authentication and Access Control in 5G Device-to-Device Communication. In 2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) IEEE. (2021), 1575–1582.

11.

Seok

, Sicato

J.C.S.

, Erzhena

, Xuan

, Pan

and Park

J.H.

, Secure D2D communication for 5G IoT network based on lightweight cryptography, Applied Sciences 10(1) (2019), 217.

12.

Yakubu

B.M.

, Khan

M.I.

, Khan

, Jabeen

and Jeon

, Blockchain-based DDoS attack mitigation protocol for device-to-device interaction in smart home, Digital Communications and Networks 9(2) (2023), 383–392.

13.

Rani

S.J.

, Ioannou

, Nagaradjane

, Christophorou

, Vassiliou

, Yarramsetti

, Shridhar

, Balaji

L.M.

, Pitsillides

A Novel Deep Hierarchical Machine Learning Approach for Identification of Known and Unknown Multiple Security Attacks in a D2D Communications Network, IEEE Access. 2023.

14.

Rani

S.J.

, Ioannou

, Nagaradjane

, Christophorou

, Vassiliou

, Charan

, Prakash

, Parekh

and Pitsillides

, Detection of DDoS attacks in D2D communications using machine learning approach, Computer Communications 198 (2023), pp. 32–51.

15.

Tayade

and Vijaya Kumar

, Quantum based flexible secure authentication protocol (SAP) for device to device (D2D) communication, Optical and Quantum Electronics 55(9) (2023), 1–34.

16.

Nyangaresi

V.O.

, Rodrigues

A.J.

, Abeka

S.O.

Secure Algorithm for IoT Devices Authentication. In Industry 4.0 Challenges in Smart Cities (2022), 1–22.

17.

Hajian

, Haghighat

and Erfani

S.H.

, A secure anonymous D2D mutual authentication and key agreement protocol for IoT, Internet of Things 18 (2022), 100493.

18.

Kishore

, Ioannou

, Christophorou

, Prabagarane

, Vassiliou

, Vignesh

, Vinayak

, Venkatesh

and Pitsillides

, A security protocol for D2D communications in 5G networks using elliptic curve cryptography, International Journal of Information Security 21(6) (2022), 1389–1408.

19.

Khoshafa

M.H.

, Ngatched

T.M.

and Ahmed

M.H.

, Relay selection for improving physical layer security in D2D underlay communications, IEEE Access 10 (2022), 95539–95552.

20.

Suraci

, Pizzi

, Garompolo

, Araniti

, Molinaro

and Iera

, Trusted and secured D2D-aided communications in 5G networks, Ad Hoc Networks 114 (2021), 102403.

21.

Pothumarti

, Jain

, Krishnan

A lightweight authentication scheme for 5G mobile communications: a dynamic key approach, Journal of Ambient Intelligence and Humanized Computing (2021), 1–19.

22.

Noura

H.N.

, Melki

, Kanj

and Chehab

, Secure MIMO D2D communication based on a lightweight and robust PLS cipher scheme, Wireless Networks 27 (2021), 557–574.

23.

Gaba

G.S.

, Kumar

, Kim

T.H.

, Monga

and Kumar

, Secure device-to-device communications for 5g enabled internet of things applications, Computer Communications 169 (2021), 114–128.

24.

Zheng

, Chen

, Wu

and Liu

, Cooperative-routing mechanism based on node classification and task allocation for opportunistic social networks, IET Communications 14(3) (2020), 420–429.

25.

, Chen

, Wu

and Liu

, Routing algorithm based on triangular fuzzy layer model and multi-layer clustering for opportunistic network, IET Communications 14(17) (2020), 2905–2914.

26.

Abro

, Deng

and Memon

K.A.

, A lightweight elliptic-Elgamal-based authentication scheme for secure device-to-device communication, Future Internet 11(5) (2019), 108.

Deep-MAD: Deep learning based multiple attack detection for secure device- to-device communication in FOG environment 1

Abstract

Keywords

1 Introduction

2.1 Differences between the proposed and existing techniques

3 Proposed Deep-MAD model

3.1.2 Decryption

3.2 Classification and detection of multiple attacks using Bi-LSTM

Table 1 Simulation parameters Parameters Value Network Area 300 m×300m Nodes 500 Radio Range 250 m Simulation time 60ms Data packet length 600 bytes Transmission Power 1.4 (W) Mobility model Random Way point

4.2.1 Efficiency evaluation

5 Conclusion

References

Table 1
Simulation parameters

Parameters Value

Network Area 300 m×300m

Nodes 500

Radio Range 250 m

Simulation time 60ms

Data packet length 600 bytes

Transmission Power 1.4 (W)

Mobility model Random Way point