期刊论文详细信息
Journal of Information and Telecommunication
Denial of service attack detection through machine learning for the IoT
Zubair Baig1  Naeem Firdous Syed2  Craig Valli2  Ahmed Ibrahim2 
[1] School of Information Technology, Deakin University;Security Research Institute, School of Science, Edith Cowan University;
关键词: iot;    security;    network security;    mqtt;    dos;   
DOI  :  10.1080/24751839.2020.1767484
来源: DOAJ
【 摘 要 】

Sustained Internet of Things (IoT) deployment and functioning are heavily reliant on the use of effective data communication protocols. In the IoT landscape, the publish/subscribe-based Message Queuing Telemetry Transport (MQTT) protocol is popular. Cyber security threats against the MQTT protocol are anticipated to increase at par with its increasing use by IoT manufacturers. In particular, IoT is vulnerable to protocol-based Application layer Denial of Service (DoS) attacks, which have been known to cause widespread service disruption in legacy systems. In this paper, we propose an Application layer DoS attack detection framework for the MQTT protocol and test the scheme on legitimate and protocol compliant DoS attack scenarios. To protect the MQTT message brokers from such attacks, we propose a machine learning-based detection framework developed for the MQTT protocol. Through experiments, we demonstrate the impact of such attacks on various MQTT brokers and evaluate the effectiveness of the proposed framework to detect these malicious attacks. The results obtained indicate that the attackers can overwhelm the server resources even when legitimate access was denied to MQTT brokers and resources have been restricted. In addition, the MQTT features we have identified showed high attack detection accuracy. The field size and length-based features drastically reduced the false-positive rates and are suitable in detecting IoT based attacks.

【 授权许可】

Unknown   

  文献评价指标  
  下载次数:0次 浏览次数:0次