Investigating Brute Force Attack Patterns in IoT Network

Stiawan, Deris; Idris, Mohammad Yazid Bin; Malik, Reza Firsandaya; Nurmaini, Siti; Alsharif, Nizar; Budiarto, Rahmat

doi:10.1155/2019/4568368

Cited by 56 publications

(31 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A brute force attack consists in running possible attempts to retrieve users credentials used by MQTT [ 50 ]. Regarding MQTTset, the attacker’s aim is to crack users’ credentials (username and password) adopted during the authentication phase.…”

Section: Mqttset Datasetmentioning

confidence: 99%

MQTTset, a New Dataset for Machine Learning Techniques on MQTT

Vaccari

Chiola

Aiello

et al. 2020

Sensors

143

View full text Add to dashboard Cite

IoT networks are increasingly popular nowadays to monitor critical environments of different nature, significantly increasing the amount of data exchanged. Due to the huge number of connected IoT devices, security of such networks and devices is therefore a critical issue. Detection systems assume a crucial role in the cyber-security field: based on innovative algorithms such as machine learning, they are able to identify or predict cyber-attacks, hence to protect the underlying system. Nevertheless, specific datasets are required to train detection models. In this work we present MQTTset, a dataset focused on the MQTT protocol, widely adopted in IoT networks. We present the creation of the dataset, also validating it through the definition of a hypothetical detection system, by combining the legitimate dataset with cyber-attacks against the MQTT network. Obtained results demonstrate how MQTTset can be used to train machine learning models to implement detection systems able to protect IoT contexts.

show abstract

Section: Mqttset Datasetmentioning

confidence: 99%

MQTTset, a New Dataset for Machine Learning Techniques on MQTT

Vaccari

Chiola

Aiello

et al. 2020

Sensors

143

View full text Add to dashboard Cite

show abstract

“…Device vendors tend to use common credentials for IoT devices and most of device consumers do not care to change these default credentials. This increases the vulnerability of the IoT devices to dictionary attacks, while being used by consumers [58]. This will help adversaries gain control of the IoT devices.…”

Section: Improving Securitymentioning

confidence: 99%

Survey on Network Slicing for Internet of Things Realization in 5G Networks

Wijethilaka

Liyanage

2021

IEEE Commun. Surv. Tutorials

288

124

View full text Add to dashboard Cite

Internet of Things (IoT) is an emerging technology that makes people's lives smart by conquering a plethora of diverse application and service areas. In near future, the fifthgeneration (5G) wireless networks provide the connectivity for this IoT ecosystem. It has been carefully designed to facilitate the exponential growth in the IoT field. Network slicing is one of the key technologies in the 5G architecture that has the ability to divide the physical network into multiple logical networks (i.e. slices) with different network characteristics. Therefore, network slicing is also a key enabler of realisation of IoT in 5G. Network slicing can satisfy the various networking demands by heterogeneous IoT applications via dedicated slices. In this survey, we present a comprehensive analysis of the exploitation of network slicing in IoT realisation. We discuss network slicing utilisation in different IoT application scenarios, along with the technical challenges that can be solved via network slicing. Furthermore, integration challenges and open research problems related to the network slicing in the IoT realisation are also discussed in this paper. Finally, we discuss the role of other emerging technologies and concepts, such as blockchain and Artificial Intelligence/Machine Learning(AI/ML) in network slicing and IoT integration.

show abstract

“…Wireshark utilized to run sniffing attack, Metasploit to run auxiliary contained slowloris and synflood attack for DOS type attack also password brute-force attack, and HULK python script to run floodbased DOS attack. The network attack will be run based on a basic penetration test [25][26][27]. Efficiency parameter evaluation will be tested in Rasefiberry generally used encryption algorithms such as DES, AES, Blowfish, ECDH, and Twofish.…”

Section: Figure 3 Rasefiberry Custom Snort Rulesmentioning

confidence: 99%

Rasefiberry: Secure and efficient Raspberry-Pi based gateway for smarthome IoT architecture

Simadiputra

Surantha

2021

Bulletin EEI

View full text Add to dashboard Cite

Internet-of-Things or IoT technology becomes essential in everyday lives. The risk of security and privacy towards IoT devices, especially smarthomes IoT gateway device, becoming apparent as IoT technology progressed. The need for affordable, secure smarthome gateway device or router that smarthome user prefer. The problem of low-performance smarthome gateways was running security programs on top of smarthome gateway programs. This problem motivates the researcher designing a secure and efficient smarthome gateway using Raspberry Pi hardware as an affordable smarthome gateway device and able to run both smarthome gateways and security programs. In this research, researchers implemented snort as intrusion detection system (IDS), openHab as IoT gateway applications, and well-known encryption algorithms for file encryption in Raspberry PI 3B+ model. The researcher evaluated Snort capability on network attacks and compared each of the well-known encryption algorithm efficiency. From the result, we found Rasefiberry customized snort configuration for Raspberry pi 60 percent of the simulated network attacks. Twofish encryption algorithms were found to have best encryption time, throughput, and power consumption compared to other encryption algorithms in the research. Rasefiberry architecture successfully processes both lightweight security programs and Openhab smarthome gateway programs with a lowperformance computing device such as Raspberry Pi.

show abstract

Investigating Brute Force Attack Patterns in IoT Network

Cited by 56 publications

References 22 publications

MQTTset, a New Dataset for Machine Learning Techniques on MQTT

MQTTset, a New Dataset for Machine Learning Techniques on MQTT

Survey on Network Slicing for Internet of Things Realization in 5G Networks

Rasefiberry: Secure and efficient Raspberry-Pi based gateway for smarthome IoT architecture

Contact Info

Product

Resources

About