Please use this identifier to cite or link to this item:
https://doi.org/10.1109/JIOT.2021.3055937
Title: | ADEPT: Detection and Identification of Correlated Attack Stages in IoT Networks | Authors: | Sudheera, KLK Divakaran, DM Singh, RP Gurusamy, M |
Issue Date: | 15-Apr-2021 | Publisher: | Institute of Electrical and Electronics Engineers (IEEE) | Citation: | Sudheera, KLK, Divakaran, DM, Singh, RP, Gurusamy, M (2021-04-15). ADEPT: Detection and Identification of Correlated Attack Stages in IoT Networks. IEEE Internet of Things Journal 8 (8) : 65916607. ScholarBank@NUS Repository. https://doi.org/10.1109/JIOT.2021.3055937 | Abstract: | The fast-growing Internet-of-Things (IoT) market has opened up a large threat landscape, given the wide deployment of IoT devices in both consumer and commercial spaces. Attacks on IoT devices generally consist of multiple stages and are dispersed spatially and temporally. These characteristics make it challenging to detect and identify the attack stages using solutions that tend to be localized in space and time. In this work, we present Adept, a distributed framework to detect and identify the individual attack stages in a coordinated attack. Adept works in three phases. First, network traffic of IoT devices is processed locally for detecting anomalies with respect to their benign profiles. Any alert corresponding to a potential anomaly is sent to a security manager, where aggregated alerts are mined, using frequent itemset mining (FIM), for detecting patterns correlated across both time and space. Finally, using both alert-level and pattern-level information as features, we employ a machine learning approach to identify individual attack stages in the generated alerts. We carry out extensive experiments, with emulated and realistic network traffic; the results demonstrate the effectiveness of the proposed framework in terms of its ability in attack-stage detection and identification. | Source Title: | IEEE Internet of Things Journal | URI: | https://scholarbank.nus.edu.sg/handle/10635/194969 | ISSN: | 2327-4662 | DOI: | 10.1109/JIOT.2021.3055937 |
Appears in Collections: | Staff Publications Elements |
Show full item record
Files in This Item:
File | Description | Size | Format | Access Settings | Version | |
---|---|---|---|---|---|---|
ADEPT-preprint-2020.pdf | 8.5 MB | Adobe PDF | CLOSED | Post-print | ||
IEEE_IoT_Journal_2020___Revision_1___No_Highlights (1).pdf | 8.5 MB | Adobe PDF | OPEN | Post-print | View/Download |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.