A machine learning based framework for IoT device identification and abnormal traffic detection
| dc.contributor.author | Salman, Ola | |
| dc.contributor.author | Elhajj, Imad H. | |
| dc.contributor.author | Chehab, Ali | |
| dc.contributor.author | Kayssi, Ayman I. | |
| dc.contributor.department | Department of Electrical and Computer Engineering | |
| dc.contributor.faculty | Maroun Semaan Faculty of Engineering and Architecture (MSFEA) | |
| dc.contributor.institution | American University of Beirut | |
| dc.date.accessioned | 2025-01-24T11:30:51Z | |
| dc.date.available | 2025-01-24T11:30:51Z | |
| dc.date.issued | 2022 | |
| dc.description.abstract | Network security is a key challenge for the deployment of Internet of Things (IoT). New attacks have been developed to exploit the vulnerabilities of IoT devices. Moreover, IoT immense scale will amplify traditional network attacks. Machine learning has been extensively applied for traffic classification and intrusion detection. In this paper, we propose a framework, specifically for IoT devices identification and malicious traffic detection. Pushing the intelligence to the network edge, this framework extracts features per network flow to identify the source, the type of the generated traffic, and to detect network attacks. Different machine learning algorithms are compared with random forest, which gives the best results: Up to 94.5% accuracy for device-type identification, up to 93.5% accuracy for traffic-type classification, and up to 97% accuracy for abnormal traffic detection. © 2019 John Wiley & Sons, Ltd. | |
| dc.identifier.doi | https://doi.org/10.1002/ett.3743 | |
| dc.identifier.eid | 2-s2.0-85071857222 | |
| dc.identifier.uri | http://hdl.handle.net/10938/27495 | |
| dc.language.iso | en | |
| dc.publisher | John Wiley and Sons Inc | |
| dc.relation.ispartof | Transactions on Emerging Telecommunications Technologies | |
| dc.source | Scopus | |
| dc.subject | Computer crime | |
| dc.subject | Decision trees | |
| dc.subject | Intrusion detection | |
| dc.subject | Learning algorithms | |
| dc.subject | Machine learning | |
| dc.subject | Network security | |
| dc.subject | Abnormal traffic detection | |
| dc.subject | Internet of things (iot) | |
| dc.subject | Malicious traffic | |
| dc.subject | Network attack | |
| dc.subject | Network edges | |
| dc.subject | Network flows | |
| dc.subject | Traffic classification | |
| dc.subject | Type classifications | |
| dc.subject | Internet of things | |
| dc.title | A machine learning based framework for IoT device identification and abnormal traffic detection | |
| dc.type | Article |
Files
Original bundle
1 - 1 of 1