TY - GEN
T1 - EnergyCIDN: Enhanced Energy-Aware Challenge-Based Collaborative Intrusion Detection in Internet of Things
AU - Li, Wenjuan
AU - Rosenberg, Philip
AU - Glisby, Mads
AU - Han, Michael
N1 - Funding Information:
Acknowledgments. This work was partially supported by the start-up fund in the Department of Electronic and Information Engineering, The Hong Kong Polytechnic University.
Publisher Copyright:
© 2023, Springer Nature Switzerland AG.
PY - 2023/1
Y1 - 2023/1
N2 - With cyber attacks becoming more complex and advanced, a separate intrusion detection system (IDS) is believed to be insufficient for protecting the whole computer networks. Thus, collaborative intrusion detection networks (CIDNs) are proposed aiming to improve the detection performance by allowing various nodes to share required information or messages with other nodes. To defeat insider threats during the sharing process (e.g., malicious information), trust management is a necessary security mechanism for CIDNs, where challenge-based CIDNs are a typical example that sends a special kind of message, called challenge, to evaluate the reputation of a node. The previous work has proven that challenge-based CIDNs can defeat most common insider threats, but it may still suffer from some advanced insider threats, e.g., passive message fingerprint attack (PMFA). In this work, we develop EnergyCIDN, an enhanced challenge-based CIDN by adopting an energy-aware trust management model against advanced insider attacks. In the evaluation, we study the performance of EnergyCIDN under both simulated and practical Internet of Things (IoT) environments. The results demonstrate that EnergyCIDN can perform better than many similar schemes in identifying advanced malicious nodes.
AB - With cyber attacks becoming more complex and advanced, a separate intrusion detection system (IDS) is believed to be insufficient for protecting the whole computer networks. Thus, collaborative intrusion detection networks (CIDNs) are proposed aiming to improve the detection performance by allowing various nodes to share required information or messages with other nodes. To defeat insider threats during the sharing process (e.g., malicious information), trust management is a necessary security mechanism for CIDNs, where challenge-based CIDNs are a typical example that sends a special kind of message, called challenge, to evaluate the reputation of a node. The previous work has proven that challenge-based CIDNs can defeat most common insider threats, but it may still suffer from some advanced insider threats, e.g., passive message fingerprint attack (PMFA). In this work, we develop EnergyCIDN, an enhanced challenge-based CIDN by adopting an energy-aware trust management model against advanced insider attacks. In the evaluation, we study the performance of EnergyCIDN under both simulated and practical Internet of Things (IoT) environments. The results demonstrate that EnergyCIDN can perform better than many similar schemes in identifying advanced malicious nodes.
KW - Collaborative network
KW - Energy consumption
KW - Insider attack
KW - Intrusion detection
KW - Trust management
UR - http://www.scopus.com/inward/record.url?scp=85148684467&partnerID=8YFLogxK
U2 - 10.1007/978-3-031-22677-9_16
DO - 10.1007/978-3-031-22677-9_16
M3 - Conference article published in proceeding or book
AN - SCOPUS:85148684467
SN - 9783031226762
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 293
EP - 312
BT - Algorithms and Architectures for Parallel Processing - 22nd International Conference, ICA3PP 2022, Proceedings
A2 - Meng, Weizhi
A2 - Lu, Rongxing
A2 - Min, Geyong
A2 - Vaidya, Jaideep
PB - Springer Science and Business Media Deutschland GmbH
T2 - 22nd International Conference on Algorithms and Architectures for Parallel Processing, ICA3PP 2022
Y2 - 10 October 2022 through 12 October 2022
ER -