Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

IoT Intrusion Detection Taxonomy, Reference Architecture, and Analyses

Journal Article · · Sensors
DOI:https://doi.org/10.3390/s21196432· OSTI ID:2471417
 [1];  [1];  [1];  [2]
  1. University of Idaho, Moscow, ID (United States)
  2. Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)
+ Show Author Affiliations
This paper surveys the deep learning (DL) approaches for intrusion-detection systems (IDSs) in Internet of Things (IoT) and the associated datasets toward identifying gaps, weaknesses, and a neutral reference architecture. A comparative study of IDSs is provided, with a review of anomaly-based IDSs on DL approaches, which include supervised, unsupervised, and hybrid methods. All techniques in these three categories have essentially been used in IoT environments. To date, only a few have been used in the anomaly-based IDS for IoT. For each of these anomaly-based IDSs, the implementation of the four categories of feature(s) extraction, classification, prediction, and regression were evaluated. We studied important performance metrics and benchmark detection rates, including the requisite efficiency of the various methods. Four machine learning algorithms were evaluated for classification purposes: Logistic Regression (LR), Support Vector Machine (SVM), Decision Tree (DT), and an Artificial Neural Network (ANN). Therefore, we compared each via the Receiver Operating Characteristic (ROC) curve. The study model exhibits promising outcomes for all classes of attacks. The scope of our analysis examines attacks targeting the IoT ecosystem using empirically based, simulation-generated datasets (namely the Bot-IoT and the IoTID20 datasets).
Research Organization:
Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)
Sponsoring Organization:
USDOE
Grant/Contract Number:
AC05-00OR22725
OSTI ID:
2471417
Journal Information:
Sensors, Journal Name: Sensors Journal Issue: 19 Vol. 21; ISSN 1424-8220
Publisher:
MDPI AGCopyright Statement
Country of Publication:
United States
Language:
English

References (91)

A new online anomaly learning and detection for large-scale service of Internet of Thing journal August 2015
RETRACTED ARTICLE: Mobile network intrusion detection for IoT system based on transfer learning algorithm journal January 2018
A survey of DDoS attacking techniques and defence mechanisms in the IoT network journal July 2019
A Security Differential Game Model for Sensor Networks in Context of the Internet of Things journal January 2013
A Survey on Architecture, Protocols and Challenges in IoT journal January 2020
SVELTE: Real-time intrusion detection in the Internet of Things journal November 2013
The Internet of Things vision: Key features, applications and open issues journal December 2014
Hybrid of anomaly-based and specification-based IDS for Internet of Things using unsupervised OPF based on MapReduce approach journal January 2017
Intrusion detection systems in the Internet of things: A comprehensive investigation journal September 2019
Anomaly-based network intrusion detection: Techniques, systems and challenges journal February 2009
Toward developing a systematic approach to generate benchmark datasets for intrusion detection journal May 2012
Detecting stealthy false data injection attacks in the smart grid using ensemble-based machine learning journal October 2020
Intrusion detection by machine learning: A review journal December 2009
Mining network data for intrusion detection through combining SVMs with ant colony networks journal July 2014
Distributed attack detection scheme using deep learning approach for Internet of Things journal May 2018
Performance comparison of intrusion detection systems and application of machine learning to Snort system journal March 2018
A deep Recurrent Neural Network based approach for Internet of Things malware threat hunting journal August 2018
Designing collaborative blockchained signature-based intrusion detection in IoT environments journal July 2019
Towards the development of realistic botnet dataset in the Internet of Things for network forensic analytics: Bot-IoT dataset journal November 2019
Anomaly detection framework for Internet of things traffic using vector convolutional deep learning approach in fog environment journal December 2020
IoT data feature extraction and intrusion detection system for smart cities based on deep migration learning journal December 2019
Intrusion detection in smart cities using Restricted Boltzmann Machines journal June 2019
Deep learning approaches for anomaly-based intrusion detection systems: A survey, taxonomy, and open issues journal February 2020
Deep learning in neural networks: An overview journal January 2015
Ellipsoidal neighbourhood outlier factor for distributed anomaly detection in resource constrained networks journal September 2014
End-to-end neural network architecture for fraud scoring in card payments journal April 2018
Taxonomy of Machine Leaning Based Anomaly Detection and its suitability journal January 2018
Authentication in cloud-driven IoT-based big data environment: Survey and outlook journal August 2019
Lightweight IoT Malware Detection Solution Using CNN Classification conference September 2020
Bidirectional recurrent neural networks journal January 1997
LSTM-Based Analysis of Industrial IoT Equipment journal January 2018
Intrusion Detection for IoT Based on Improved Genetic Algorithm and Deep Belief Network journal January 2019
A Survey on IoT Security: Application Areas, Security Threats, and Solution Architectures journal January 2019
Group-Wise Principal Component Analysis for Exploratory Intrusion Detection journal January 2019
A Taxonomy of Network Threats and the Effect of Current Datasets on Intrusion Detection Systems journal January 2020
Security Assured CNN-Based Model for Reconstruction of Medical Images on the Internet of Healthcare Things journal January 2020
An Adaptive Deep-Ensemble Anomaly-Based Intrusion Detection System for the Internet of Things conference May 2021
LSTM for Anomaly-Based Network Intrusion Detection conference November 2018
Towards effective feature selection in machine learning-based botnet detection approaches conference October 2014
A Survey of Distance and Similarity Measures Used Within Network Intrusion Anomaly Detection journal January 2015
A Survey on Regular Expression Matching for Deep Packet Inspection: Applications, Algorithms, and Hardware Platforms journal January 2016
A Critical Review of Practices and Challenges in Intrusion Detection Systems for IoT: Toward Universal and Resilient Systems journal January 2018
Network Intrusion Detection for IoT Security Based on Learning Techniques journal January 2019
A Survey of Machine and Deep Learning Methods for Internet of Things (IoT) Security journal January 2020
An Intrusion Detection System for Detecting Compromised Gateways in Clustered IoT Networks conference May 2018
Empirical Evaluation of the Ensemble Framework for Feature Selection in DDoS Attack
  • Das, Saikat; Venugopal, Deepak; Shiva, Sajjan
  • 2020 7th IEEE International Conference on Cyber Security and Cloud Computing (CSCloud)/2020 6th IEEE International Conference on Edge Computing and Scalable Cloud (EdgeCom) https://doi.org/10.1109/CSCloud-EdgeCom49738.2020.00019
conference August 2020
Distributed Anomaly Detection Using Autoencoder Neural Networks in WSN for IoT conference May 2018
Behavioral Modeling Intrusion Detection System (BMIDS) Using Internet of Things (IoT) Behavior-Based Anomaly Detection via Immunity-Inspired Algorithms conference August 2016
PHY/MAC layer attack detection system using neuro-fuzzy algorithm for IoT network conference March 2016
Real-time anomaly-based distributed intrusion detection systems for advanced Metering Infrastructure utilizing stream data mining conference October 2015
Flow-based features for a robust intrusion detection system targeting mobile traffic conference May 2016
A secure architecture for IoT with supply chain risk management
  • Hiromoto, Robert E.; Haney, Michael; Vakanski, Aleksandar
  • 2017 9th IEEE International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS) https://doi.org/10.1109/IDAACS.2017.8095118
conference September 2017
Detection of sinkhole attacks for supporting secure routing on 6LoWPAN for Internet of Things conference May 2015
Threat analysis of IoT networks using artificial neural network intrusion detection system conference May 2016
Information Fusion to Defend Intentional Attack in Internet of Things journal August 2014
A Survey on Internet of Things: Architecture, Enabling Technologies, Security and Privacy, and Applications journal October 2017
RNN-Assisted Network Coding for Secure Heterogeneous Internet of Things With Unreliable Storage journal October 2019
Secure Collaborative Deep Learning Against GAN Attacks in the Internet of Things journal April 2021
Low-Energy Security: Limits and Opportunities in the Internet of Things journal January 2015
Network intrusion detection for cyber security using unsupervised deep learning approaches conference June 2017
Ultra-lightweight deep packet anomaly detection for Internet of Things devices conference December 2015
A survey: Attacks on RPL and 6LoWPAN in IoT conference January 2015
Network Intrusion Detection using Natural Language Processing and Ensemble Machine Learning conference December 2020
On the Vital Areas of Intrusion Detection Systems in Wireless Sensor Networks journal January 2013
LSTM Learning With Bayesian and Gaussian Processing for Anomaly Detection in Industrial IoT journal August 2020
Dynamic recurrent neural networks: Theory and applications journal March 1994
Negative Selection and Neural Network Based Algorithm for Intrusion Detection in IoT conference July 2018
Deep learning approach for Network Intrusion Detection in Software Defined Networking conference October 2016
Classifying IoT security risks using Deep Learning algorithms conference October 2018
Reducing the Dimensionality of Data with Neural Networks journal July 2006
RawPower conference August 2018
Robust Deep Learning Methods for Anomaly Detection
  • Chalapathy, Raghavendra; Khoa, Nguyen Lu Dang; Chawla, Sanjay
  • Proceedings of the 26th ACM SIGKDD International Conference on Knowledge Discovery & Data Mining https://doi.org/10.1145/3394486.3406704
conference August 2020
Linear SVM-Based Android Malware Detection for Reliable IoT Services journal January 2014
A Host-Based Anomaly Detection Framework Using XGBoost and LSTM for IoT Devices journal October 2020
Long Short-Term Memory journal November 1997
Intrusion detection systems for IoT-based smart environments: a survey journal December 2018
Intrusion Detection System Using Deep Neural Network for In-Vehicle Network Security journal June 2016
Intrusion detection systems in Internet of Things: A literature review conference June 2018
On the Properties of Neural Machine Translation: Encoder–Decoder Approaches
  • Cho, Kyunghyun; van Merrienboer, Bart; Bahdanau, Dzmitry
  • Proceedings of SSST-8, Eighth Workshop on Syntax, Semantics and Structure in Statistical Translation https://doi.org/10.3115/v1/W14-4012
conference January 2014
Machine Learning and Deep Learning Methods for Intrusion Detection Systems: A Survey journal October 2019
A Comprehensive Survey on Cyber-Physical Smart Grid Testbed Architectures: Requirements and Challenges journal April 2021
Packet Preprocessing in CNN-Based Network Intrusion Detection System journal July 2020
A Specification-Based IDS for Detecting Attacks on RPL-Based Network Topology journal May 2016
A Hybrid Spectral Clustering and Deep Neural Network Ensemble Algorithm for Intrusion Detection in Sensor Networks journal October 2016
Conditional Variational Autoencoder for Prediction and Feature Recovery Applied to Intrusion Detection in IoT journal August 2017
Anomaly Detection in Nanofibrous Materials by CNN-Based Self-Similarity journal January 2018
A Survey of Internet of Things (IoT) Authentication Schemes journal March 2019
Towards Deep-Learning-Driven Intrusion Detection for the Internet of Things journal April 2019
A Survey of IoT Security Based on a Layered Architecture of Sensing and Data Analysis journal June 2020
A Deep Learning Approach for Network Intrusion Detection System conference January 2016
Deep belief networks journal January 2009

Similar Records

Cognitive IoT and Edge Computing for Intrusion Detection with Federated TinyML
Conference · Thu May 01 00:00:00 EDT 2025 · OSTI ID:3002487
Review of Intrusion Detection Methods and Tools for Distributed Energy Resources
Technical Report · Sun Jan 31 23:00:00 EST 2021 · OSTI ID:1769265

Related Subjects

97 MATHEMATICS AND COMPUTING
IoT architecture mapping
IoT security
anomaly-based IDS
chemistry
deep learning
engineering
instruments & instrumentation
intrusion-detection systems (IDS)
machine learning (ML)