Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
An Intelligent Two-Layer Intrusion Detection System for the Internet of Things
School of IT Administration and Security, Seneca College of Applied Arts and Technology, Toronto Metropolitan University, Toronto, ON, Canada.ORCID iD: 0000-0002-4324-1774
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Digital Services and Systems. College of Information Technology, United Arab Emirates University, Al Ain, UAE; Electrical Engineering Department, Faculty of Engineering, Al-Azhar University, Qena, Egypt; Centre for Security, Communications and Network Research, University of Plymouth, United Kingdom.ORCID iD: 0000-0002-3800-0757
2023 (English)In: IEEE Transactions on Industrial Informatics, ISSN 1551-3203, E-ISSN 1941-0050, Vol. 19, no 1, p. 683-692Article in journal (Refereed) Published
Abstract [en]

The Internet of Things (IoT) has become an enabler paradigm for different applications, such as healthcare, education, agriculture, smart homes, and recently, enterprise systems (E-IoTs). Significant advances in IoT networks have been hindered by security vulnerabilities and threats, which, if not addressed, can negatively impact the deployment and operation of IoT-enabled systems. This study addresses IoT security and presents an intelligent two-layer intrusion detection system for IoT. The system's intelligence is driven by machine learning techniques for intrusion detection, with the two-layer architecture handling flow-based and packet-based features. By selecting significant features, the time overhead is minimized without affecting detection accuracy. The uniqueness and novelty of the proposed system emerge from combining machine learning and selection modules for flow-based and packet-based features. The proposed intrusion detection works at the network layer, and hence, it is device and application transparent. In our experiments, the proposed system had an accuracy of 99.15% for packet-based features with a testing time of 0.357 μs. The flow-based classifier had an accuracy of 99.66% with a testing time of 0.410 μs. A comparison demonstrated that the proposed system outperformed other methods described in the literature. Thus, it is an accurate and lightweight tool for detecting intrusions in IoT systems.

Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers (IEEE), 2023. Vol. 19, no 1, p. 683-692
Keywords [en]
Internet of Things, intrusion detection, machine learning, flow-based features, packet-based features, efficiency
National Category
Information Systems
Research subject
Information systems
Identifiers
URN: urn:nbn:se:ltu:diva-92495DOI: 10.1109/tii.2022.3192035ISI: 000880654600069Scopus ID: 2-s2.0-85135233186OAI: oai:DiVA.org:ltu-92495DiVA, id: diva2:1687612
Note

Validerad;2022;Nivå 2;2022-11-28 (sofila)

Available from: 2022-08-16 Created: 2022-08-16 Last updated: 2022-11-28Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Awad, Ali Ismail

Search in DiVA

By author/editor
Alani, Mohammed M.Awad, Ali Ismail
By organisation
Digital Services and Systems
In the same journal
IEEE Transactions on Industrial Informatics
Information Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 240 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf