A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.

A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.

The Internet of Things (IoT), like other network infrastructures, requires Intrusion Detection Systems (IDSs) to be protected against attacks. When deploying an IDS in IoT-based smart city environments, the balance between latency and node capacity must be considered, which justifies a distributed I...

Full description

Saved in:
Bibliographic Details
Main Authors: Hamdan, Mosab, Eldhai, Arwa M., Abdelsalam, Samah, Ullah, Kifayat, Bashir, Ali Kashif, Marsono, M. N., Kon, Fabio, Batista, Daniel Macêdo
Format: Conference or Workshop Item
Published: 2023
Subjects:
TK7885-7895 Computer engineer. Computer hardware
Online Access:http://eprints.utm.my/107904/
http://dx.doi.org/10.1109/INFOCOMWKSHPS57453.2023.10225834
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Universiti Teknologi Malaysia
id my.utm.107904
record_format eprints
spelling my.utm.1079042024-10-13T09:11:07Z http://eprints.utm.my/107904/ A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities. Hamdan, Mosab Eldhai, Arwa M. Abdelsalam, Samah Ullah, Kifayat Bashir, Ali Kashif Marsono, M. N. Kon, Fabio Batista, Daniel Macêdo TK7885-7895 Computer engineer. Computer hardware The Internet of Things (IoT), like other network infrastructures, requires Intrusion Detection Systems (IDSs) to be protected against attacks. When deploying an IDS in IoT-based smart city environments, the balance between latency and node capacity must be considered, which justifies a distributed IDS with specific classifiers based on the location of the system processing nodes. This paper proposes a two-level classification technique for collaborative anomaly-based IDSs deployed on fog and edge nodes. A Gradient Boosting Classifier (GBC) is used in the lower layer classifier at the edge, while a Convolutional Neural Network (CNN) is used in the upper layer classifier at the fog. Experimentation has demonstrated that the suggested IDS architecture outperforms previous solutions. For instance, in some scenarios, when comparing our proposal with Random Forest, the former obtained an accuracy equal to 99.1%, while the latter obtained 95.3%. Furthermore, our proposal can better select the most important network traffic features, reducing 76% of the data to be analyzed and improving privacy. 2023-08-29 Conference or Workshop Item PeerReviewed Hamdan, Mosab and Eldhai, Arwa M. and Abdelsalam, Samah and Ullah, Kifayat and Bashir, Ali Kashif and Marsono, M. N. and Kon, Fabio and Batista, Daniel Macêdo (2023) A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities. In: 2023 IEEE INFOCOM Conference on Computer Communications Workshops, INFOCOM WKSHPS 2023, 20 May 2023, Hoboken, New Jersey, USA. http://dx.doi.org/10.1109/INFOCOMWKSHPS57453.2023.10225834
institution Universiti Teknologi Malaysia
building UTM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Teknologi Malaysia
content_source UTM Institutional Repository
url_provider http://eprints.utm.my/
topic TK7885-7895 Computer engineer. Computer hardware
spellingShingle TK7885-7895 Computer engineer. Computer hardware
Hamdan, Mosab
Eldhai, Arwa M.
Abdelsalam, Samah
Ullah, Kifayat
Bashir, Ali Kashif
Marsono, M. N.
Kon, Fabio
Batista, Daniel Macêdo
A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.
description The Internet of Things (IoT), like other network infrastructures, requires Intrusion Detection Systems (IDSs) to be protected against attacks. When deploying an IDS in IoT-based smart city environments, the balance between latency and node capacity must be considered, which justifies a distributed IDS with specific classifiers based on the location of the system processing nodes. This paper proposes a two-level classification technique for collaborative anomaly-based IDSs deployed on fog and edge nodes. A Gradient Boosting Classifier (GBC) is used in the lower layer classifier at the edge, while a Convolutional Neural Network (CNN) is used in the upper layer classifier at the fog. Experimentation has demonstrated that the suggested IDS architecture outperforms previous solutions. For instance, in some scenarios, when comparing our proposal with Random Forest, the former obtained an accuracy equal to 99.1%, while the latter obtained 95.3%. Furthermore, our proposal can better select the most important network traffic features, reducing 76% of the data to be analyzed and improving privacy.
format Conference or Workshop Item
author Hamdan, Mosab
Eldhai, Arwa M.
Abdelsalam, Samah
Ullah, Kifayat
Bashir, Ali Kashif
Marsono, M. N.
Kon, Fabio
Batista, Daniel Macêdo
author_facet Hamdan, Mosab
Eldhai, Arwa M.
Abdelsalam, Samah
Ullah, Kifayat
Bashir, Ali Kashif
Marsono, M. N.
Kon, Fabio
Batista, Daniel Macêdo
author_sort Hamdan, Mosab
title A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.
title_short A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.
title_full A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.
title_fullStr A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.
title_full_unstemmed A two-tier anomaly-based intrusion detection approach for IoT-enabled smart cities.
title_sort two-tier anomaly-based intrusion detection approach for iot-enabled smart cities.
publishDate 2023
url http://eprints.utm.my/107904/
http://dx.doi.org/10.1109/INFOCOMWKSHPS57453.2023.10225834
_version_ 1814043554676211712

Similar Items