Towards the development of realistic botnet dataset in the Internet of Things for network forensic analytics: Bot-IoT dataset

Koroniotis, Nickolaos; Moustafa, Nour; Sitnikova, Elena; Turnbull, Benjamin

doi:10.1016/j.future.2019.05.041

Cited by 1,133 publications

(786 citation statements)

References 36 publications

Supporting

Mentioning

639

Contrasting

Unclassified

Order By: Relevance

“…Moustafa et al [8] in the original paper that described the IoT dataset that we used for our experiments implemented LSTM, SVM and RNN machine learning techniques to analyze the IoT dataset but they did not evaluate the adversarial robustness of their machine learning models in their study. Additionally, their study only carried out binary classification on the dataset and the prediction output of the machine learning models was classified as either attack or normal traffic.…”

Section: Related Workmentioning

confidence: 99%

“…For our dataset, we use the BoT-IoT dataset [8] provided from the Cyber Range Lab of The center of UNSW Canberra Cyber. This dataset provides a realistic representation of an IoT network since it was created in a dedicated IoT environment, and contains adequate number of records with heterogeneous network profiles.…”

Section: B Datasetmentioning

confidence: 99%

“…A selection of the 10 best features have been provided in the original dataset and were also used for this study. [8].…”

Section: B Datasetmentioning

confidence: 99%

See 2 more Smart Citations

Analyzing Adversarial Attacks against Deep Learning for Intrusion Detection in IoT Networks

Ibitoye

Shafiq

Matrawy

2019

2019 IEEE Global Communications Conference (GLOBECOM)

173

View full text Add to dashboard Cite

Adversarial attacks have been widely studied in the field of computer vision but their impact on network security applications remains an area of open research. As IoT, 5G and AI continue to converge to realize the promise of the fourth industrial revolution (Industry 4.0), security incidents and events on IoT networks have increased. Deep learning techniques are being applied to detect and mitigate many of such security threats against IoT networks. Feedforward Neural Networks (FNN) have been widely used for classifying intrusion attacks in IoT networks. In this paper, we consider a variant of the FNN known as the Self-normalizing Neural Network (SNN) and compare its performance with the FNN for classifying intrusion attacks in an IoT network. Our analysis is performed using the BoT-IoT dataset from the Cyber Range Lab of the center of UNSW Canberra Cyber. In our experimental results, the FNN outperforms the SNN for intrusion detection in IoT networks based on multiple performance metrics such as accuracy, precision, and recall as well as multi-classification metrics such as Cohen Cappas score. However, when tested for adversarial robustness, the SNN demonstrates better resilience against the adversarial samples from the IoT dataset, presenting a promising future in the quest for safer and more secure deep learning in IoT networks.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: B Datasetmentioning

confidence: 99%

See 1 more Smart Citation

Analyzing Adversarial Attacks against Deep Learning for Intrusion Detection in IoT Networks

Ibitoye

Shafiq

Matrawy

2019

2019 IEEE Global Communications Conference (GLOBECOM)

173

View full text Add to dashboard Cite

show abstract

“…The studies provide evidence that machine learning techniques can achieve success for attack detection. From the works discussing the issue of using machine learning for IoT security, the detection methodologies can be categorized as unsupervised methods [10], [12], [13], [14] and supervised methods [15], [16], [17], [9], [18].…”

Section: Related Workmentioning

confidence: 99%

“…In this study, we contribute to the literature as part of a defense against IoT attack behavior by investigating the efficacy of using machine learning approaches to detect IoT network attacks. The detection algorithms are evaluated using a recent dataset, Bot-IoT, that combines legitimate and simulated IoT network traffic along with different types of attacks [9]. Using the Random Forest Regressor algorithm, features were selected from this dataset.…”

Section: Introductionmentioning

confidence: 99%

Internet of Things Cyber Attacks Detection using Machine Learning

Alsamiri¹,

Alsubhi²

2019

IJACSA

View full text Add to dashboard Cite

The Internet of Things (IoT) combines hundreds of millions of devices which are capable of interaction with each other with minimum user interaction. IoT is one of the fastest-growing areas in of computing; however, the reality is that in the extremely hostile environment of the internet, IoT is vulnerable to numerous types of cyberattacks. To resolve this, practical countermeasures need to be established to secure IoT networks, such as network anomaly detection. Regardless that attacks cannot be wholly avoided forever, early detection of an attack is crucial for practical defense. Since IoT devices have low storage capacity and low processing power, traditional high-end security solutions to protect an IoT system are not appropriate. Also, IoT devices are now connected without human intervention for longer periods. This implies that intelligent network-based security solutions like machine learning solutions must be developed. Although many studies in recent years have discussed the use of Machine Learning (ML) solutions in attack detection problems, little attention has been given to the detection of attacks specifically in IoT networks. In this study, we aim to contribute to the literature by evaluating various machine learning algorithms that can be used to quickly and effectively detect IoT network attacks. A new dataset, Bot-IoT, is used to evaluate various detection algorithms. In the implementation phase, seven different machine learning algorithms were used, and most of them achieved high performance. New features were extracted from the Bot-IoT dataset during the implementation and compared with studies from the literature, and the new features gave better results.

show abstract