ZigBee IoT Intrusion Detection System: A Hybrid Approach with Rule-based and Machine Learning Anomaly Detection

Fal Sadikin, Sandeep Kumar

Abstract

The Internet of Things (IoT) is an emerging technology with potential applications in different domains. However these IoT systems introduce new security risks and potentially open new attack vector never seen before. In this article, we show various methods to detect known attacks, as well as possible new types of attacks on ZigBee based IoT systems. To do so, we introduce a novel Intrusion Detection System (IDS) with hybrid approach by combining the human-crafted rule-based and machine learning-based anomaly detection. Rule-based approach is used to provide accurate detection mechanism for known attacks, but the rule-based approach introduces complexity in defining precise rules for accurate detection. Therefore, machine learning approach is specifically used to create a complex model of normal behaviour that is used for anomaly detection. This paper outlines the IDS implementation that cover various types of detection methods both to detect known attacks, as well as potential new type of attacks in the ZigBee IoT systems.

Download


Paper Citation


in Harvard Style

Sadikin F. and Kumar S. (2020). ZigBee IoT Intrusion Detection System: A Hybrid Approach with Rule-based and Machine Learning Anomaly Detection.In Proceedings of the 5th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS, ISBN 978-989-758-426-8, pages 57-68. DOI: 10.5220/0009342200570068


in Bibtex Style

@conference{iotbds20,
author={Fal Sadikin and Sandeep Kumar},
title={ZigBee IoT Intrusion Detection System: A Hybrid Approach with Rule-based and Machine Learning Anomaly Detection},
booktitle={Proceedings of the 5th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,},
year={2020},
pages={57-68},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009342200570068},
isbn={978-989-758-426-8},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 5th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,
TI - ZigBee IoT Intrusion Detection System: A Hybrid Approach with Rule-based and Machine Learning Anomaly Detection
SN - 978-989-758-426-8
AU - Sadikin F.
AU - Kumar S.
PY - 2020
SP - 57
EP - 68
DO - 10.5220/0009342200570068