Towards a Real Time Framework for Monitoring IoT Devices for Attack Detection: Vision Paper

Bonilla, Rafael I.; Abad, Cristina L.

doi:10.1109/dasc-picom-datacom-cyberscitec.2017.122

Cited by 4 publications

(5 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Section: Application/action Layer Architecturementioning

confidence: 99%

“…IoT application device performs required action according to the given instructions by portable devices and mobiles. A real time online monitoring system with its architecture is presented in [60], where attacks on devices can be detected and mitigated by authorities. A survey on application layer protocol including Constrained Application Protocol (CoAp), Message Queue Telemetry Transport (MQTT), Extensible Messaging and Presence Protocol (XMPP) Services, Representational State Transfer (RESTFUL) and Advanced Message Queuing Protocol (AMQP) is presented in [61].…”

Section: Architecture Of Iot Aided Systemsmentioning

confidence: 99%

See 1 more Smart Citation

IoT applications and challenges in smart cities and services

Rafiq

Mahmood

Razzaq

et al. 2023

The Journal of Engineering

View full text Add to dashboard Cite

Internet of Things (IoT) is a revolutionary and novel platform where a smart network connects to the large number of electronic devices via internet through available communication systems for reliable and real time connectivity, sensing thus acquiring data from sensors, computing and actuating devices. A review of the current status of IoT features, architecture, communication infrastructure and applications is presented here. Number of IoT applications and challenges in the development of smart cities are covered about this innovative technological platform in this review along with communication protocols characteristics and applications. IoT aided smart city services, health applications, transport applications and smart grid improvements are also discussed. Many challenges and issues related to security, communication, applications and system architecture along with future directions of IoT technology are elaborated in detail.

show abstract

Section: Application/action Layer Architecturementioning

confidence: 99%

Section: Architecture Of Iot Aided Systemsmentioning

confidence: 99%

IoT applications and challenges in smart cities and services

Rafiq

Mahmood

Razzaq

et al. 2023

The Journal of Engineering

View full text Add to dashboard Cite

show abstract

“…This architecture may be used by IoT vendors, third-party organizations (nonprofit organizations may seek to improve Internet security) and end users (organizations with a large number of IoTs). Some of the objectives of such a framework are to be able to quickly detect threats based on the analysis of IoT's abnormalities and to associate the IoT's information with other data to enhance the detection process [18].…”

Section: Background 1 Enhancements -New Technologies -Evolutionmentioning

confidence: 99%

Comparative Analysis of Open Source Security Information & Event Management Systems (SIEMs)

Bezas

Filippidou²

2023

ijcs

View full text Add to dashboard Cite

A Security Information and Event Management system (SIEM) is a tool used to collect, analyze, normalize and correlate data from various devices to identify potential cyber threats almost in real-time. SIEM provides a unified approach to security issues through two zones: Security Information Management (SIM) and Security Event Management (SEM). SIM deals with managing logs and reporting, while SEM deals with event management and real-time monitoring. SIEM tools collect data events in a central unit from various devices, normalize their format, analyze them, and generate reports and alerts. SIEM combines the ability of log management to generate a compliance report with the ability to manage threats. However, the central approach may present significant disadvantages, such as slowing system performance and complicating the prioritization of queries.

show abstract

“…A real‐time framework has been designed [9 ] for online attack detection in IoT devices. The framework consists of devices, data collection gateways, event brokers, dash board [6 ] and so on.…”

Section: Related Workmentioning

confidence: 99%

Authorisation, attack detection and avoidance framework for IoT devices

Sudhakaran

Malathy

2020

IET Networks

View full text Add to dashboard Cite

Internet of Things (IoT) involve large volumes of data generated from the interactions between devices and people, and security is a main alarm in IoT. Most of the anomaly detection techniques in IoT use supervised machine learning technique which involve huge overhead and high false positives. It is observed that severity of attack response was not considered. In this study, the authors propose to develop an authorisation, attack detection and avoidance framework for IoT devices. Initially, traffic collection agent continuously gathers packet level and flow level information for a given time interval. Then detection agent (DA) first checks the collected information with the attack rules table. If any matching attack pattern is found, it informs the attack type to response agent (RA). On the other hand, if no matching pattern is found, then the classification agent applies multi‐class support vector machine algorithm. Once the RA obtains the attack type from DA, then it estimates the severity of attack by computing the attack frequency over different time windows and appropriate action will be performed. Experimental results show that the proposed framework reduces 13% of unauthorised access and 19% false positive rate thereby increasing the detection accuracy by 0.6% and throughput.

show abstract

Towards a Real Time Framework for Monitoring IoT Devices for Attack Detection: Vision Paper

Cited by 4 publications

References 13 publications

IoT applications and challenges in smart cities and services

IoT applications and challenges in smart cities and services

Comparative Analysis of Open Source Security Information & Event Management Systems (SIEMs)

Authorisation, attack detection and avoidance framework for IoT devices

Contact Info

Product

Resources

About