International Journal of Advanced Technology and Engineering Exploration (IJATEE) ISSN (Print): 2394-5443 ISSN (Online): 2394-7454 Volume - 10 Issue - 109 December - 2023

  1. Google Scholar
AS-CL IDS: anomaly and signature-based CNN-LSTM intrusion detection system for Internet of Things

Jinsi Jose and Deepa V. Jose

Abstract

In recent years, the internet of things (IoT) has had a significant impact on our daily lives, offering various advantages for improving our quality of life. However, it is crucial to prioritize the security of IoT devices and the protection of user's personal data. Intrusion detection systems (IDS) play a critical role in maintaining data privacy and security. An IoT IDS continuously monitors network activity and identifies potential security risks or attacks targeting IoT devices. While traditional IDS solutions exist, intrusion detection heavily relies on artificial intelligence (AI). AI can greatly enhance the capabilities of IoT IDS through real-time monitoring, precise threat identification, and automatic response capabilities. It is essential to develop and utilize these technologies securely and responsibly to mitigate potential risks and safeguard user privacy. A hybrid IDS was proposed for anomaly-based and signature-based intrusions, leveraging convolutional neural network with long short-term memory (CNN-LSTM). The name of the proposed hybrid model is anomaly and signature-based CNN-LSTM intrusion detection system (AS-CL IDS). The AS-CL IDS concentrated on two different IoT IDS detection strategies employing a combination of deep learning techniques. The model includes model training and testing as well as data preprocessing. The CIC-IDS 2018, IoT network intrusion dataset, MQTT-IoT-IDS2020, and BoTNeTIoT-L01 datasets were used to train and test the AS-CL IDS. The overall performance of the proposed model was assessed using accepted assessment metrics. Despite reducing the number of characteristics, the model achieved 99.81% accuracy. Furthermore, a comparison was made between the proposed model and existing alternative models to demonstrate its productivity. As a result, the proposed model proves valuable for predicting IoT attacks. Looking ahead, the deployment strategy of the IoT IDS can anticipate the utilization of real-time datasets for future implementations.

Keyword

Internet of things, Intrusion detection systems, Deep learning, Machine learning, Artificial intelligence, IoT dataset, Hybrid intrusion detection.

Cite this article

Jose J, Jose DV.AS-CL IDS: anomaly and signature-based CNN-LSTM intrusion detection system for Internet of Things. International Journal of Advanced Technology and Engineering Exploration. 2023;10(109):1622-1639. DOI:10.19101/IJATEE.2022.10100187

Refference

[1]Hussain A, Sharif H, Rehman F, Kirn H, Sadiq A, Khan MS, et al. A systematic review of intrusion detection systems in internet of things using ML and DL. In 4th international conference on computing, mathematics and engineering technologies (iCoMET) 2023 (pp. 1-5). IEEE.

[2]Bu T, Huang Z, Zhang K, Wang Y, Song H, Zhou J, et al. Task scheduling in the internet of things: challenges, solutions, and future trends. Cluster Computing. 2023:1-30.

[3]Lu Y, Da XL. Internet of things (IoT) cybersecurity research: a review of current research topics. IEEE Internet of Things Journal. 2018; 6(2):2103-15.

[4]https://www.cisco.com/c/en/us/solutions/executive-perspectives/annual-internet-report/airhighlights.html. Accessed: 17 March 2022.

[5]Jose J, Jose DV. The internet of things architectures and use cases. In enterprise digital transformation 2022 (pp. 101-25). Auerbach Publications.

[6]Lohiya R, Thakkar A. Application domains, evaluation data sets, and research challenges of IoT: a systematic review. IEEE Internet of Things Journal. 2020; 8(11):8774-98.

[7]Kaur B, Dadkhah S, Shoeleh F, Neto EC, Xiong P, Iqbal S, et al. Internet of things (IoT) security dataset evolution: challenges and future directions. Internet of Things. 2023:100780.

[8]Aljanabi M, Ismail MA, Ali AH. Intrusion detection systems, issues, challenges, and needs. International Journal of Computational Intelligence Systems. 2021; 14(1):560-71.

[9]Khraisat A, Alazab A. A critical review of intrusion detection systems in the internet of things: techniques, deployment strategy, validation strategy, attacks, public datasets and challenges. Cybersecurity. 2021; 4:1-27.

[10]Thakkar A, Lohiya R. A survey on intrusion detection system: feature selection, model, performance measures, application perspective, challenges, and future research directions. Artificial Intelligence Review. 2022; 55(1):453-563.

[11]Malhotra P, Singh Y, Anand P, Bangotra DK, Singh PK, Hong WC. Internet of things: evolution, concerns and security challenges. Sensors. 2021; 21(5):1-33.

[12]Hanif S, Ilyas T, Zeeshan M. Intrusion detection in IoT using artificial neural networks on UNSW-15 dataset. In 16th international conference on smart cities: improving quality of life using ICT & IoT and AI 2019 (pp. 152-6). IEEE.

[13]Mohamed E. The relation of artificial intelligence with internet of things: a survey. Journal of Cybersecurity and Information Management. 2020; 1(1):30-4.

[14]Kuzlu M, Fair C, Guler O. Role of artificial intelligence in the internet of things (IoT) cybersecurity. Discover Internet of Things. 2021; 1:1-4.

[15]Awotunde JB, Misra S. Feature extraction and artificial intelligence-based intrusion detection model for a secure internet of things networks. In illumination of artificial intelligence in cybersecurity and forensics 2022 (pp. 21-44). Cham: Springer International Publishing.

[16]Al-garadi MA, Mohamed A, Al-ali AK, Du X, Ali I, Guizani M. A survey of machine and deep learning methods for internet of things (IoT) security. IEEE Communications Surveys & Tutorials. 2020; 22(3):1646-85.

[17]Anushiya R, Lavanya VS. A comparative study on intrusion detection systems for secured communication in internet of things. ICTACT Journal on Communication Technology. 2021; 6948:2527-37.

[18]Baich M, Hamim T, Sael N, Chemlal Y. Machine learning for IoT based networks intrusion detection: a comparative study. Procedia Computer Science. 2022; 215:742-51.

[19]Tsimenidis S, Lagkas T, Rantos K. Deep learning in IoT intrusion detection. Journal of Network and Systems Management. 2022; 30:1-40.

[20]Bostani H, Sheikhan M. Hybrid of anomaly-based and specification-based IDS for internet of things using unsupervised OPF based on MapReduce approach. Computer Communications. 2017; 98:52-71.

[21]Kumari VV, Varma PR. A semi-supervised intrusion detection system using active learning SVM and fuzzy c-means clustering. In international conference on I-SMAC (IoT in social, mobile, analytics and cloud) 2017 (pp. 481-5). IEEE.

[22]Bhatt P, Morais A. HADS: hybrid anomaly detection system for IoT environments. In international conference on internet of things, embedded systems and communications 2018 (pp. 191-6). IEEE.

[23]Ioulianou P, Vasilakis V, Moscholios I, Logothetis M. A signature-based intrusion detection system for the internet of things. Information and Communication Technology Form. 2018:1-7.

[24]Roopak M, Tian GY, Chambers J. Deep learning models for cyber security in IoT networks. In 9th annual computing and communication workshop and conference 2019 (pp. 452-7). IEEE.

[25]Zhang Y, Li P, Wang X. Intrusion detection for IoT based on improved genetic algorithm and deep belief network. IEEE Access. 2019; 7:31711-22.

[26]Khan MA, Karim MR, Kim Y. A scalable and hybrid intrusion detection system based on the convolutional-LSTM network. Symmetry. 2019; 11(4):1-14.

[27]Khraisat A, Gondal I, Vamplew P, Kamruzzaman J, Alazab A. A novel ensemble of hybrid intrusion detection system for detecting internet of things attacks. Electronics. 2019; 8(11):1-18.

[28]Bovenzi G, Aceto G, Ciuonzo D, Persico V, Pescapé A. A hierarchical hybrid intrusion detection approach in IoT scenarios. In GLOBECOM global communications conference 2020 (pp. 1-7). IEEE.

[29]Ramadan RA, Yadav K. A novel hybrid intrusion detection system (IDS) for the detection of internet of things (IoT) network attacks. Annals of Emerging Technologies in Computing (AETiC). 2020; 4(5):61-74.

[30]Smys S, Basar A, Wang H. Hybrid intrusion detection system for internet of things (IoT). Journal of ISMAC. 2020; 2(4):190-9.

[31]Ullah I, Ullah A, Sajjad M. Towards a hybrid deep learning model for anomalous activities detection in internet of things networks. IoT. 2021; 2(3):428-48.

[32]Huma ZE, Latif S, Ahmad J, Idrees Z, Ibrar A, Zou Z, et al. A hybrid deep random neural network for cyberattack detection in the industrial internet of things. IEEE Access. 2021; 9:55595-605.

[33]Sahu AK, Sharma S, Tanveer M, Raja R. Internet of things attack detection using hybrid deep learning model. Computer Communications. 2021; 176:146-54.

[34]Otoum Y, Nayak A. As-ids: anomaly and signature based ids for the internet of things. Journal of Network and Systems Management. 2021; 29:1-26.

[35]Ravi V, Chaganti R, Alazab M. Recurrent deep learning-based feature fusion ensemble meta-classifier approach for intelligent network intrusion detection system. Computers and Electrical Engineering. 2022; 102:108156.

[36]Mahmoud M, Kasem M, Abdallah A, Kang HS. Ae-LSTM: autoencoder with LSTM-based intrusion detection in IoT. In international telecommunications conference 2022 (pp. 1-6). IEEE.

[37]Mushtaq E, Zameer A, Umer M, Abbasi AA. A two-stage intrusion detection system with auto-encoder and LSTMs. Applied Soft Computing. 2022; 121:108768.

[38]Issa AS, Albayrak Z. Ddos attack intrusion detection system based on hybridization of CNN and LSTM. Acta Polytechnica Hungarica. 2023; 20(2):1-9.

[39]Altunay HC, Albayrak Z. A hybrid CNN+LSTM based intrusion detection system for industrial IoT networks. Engineering Science and Technology, an International Journal. 2023; 38:101322.

[40]Calik BE, Koray SO, Dogan B. Deep learning based malware detection for android systems: a comparative analysis. Tehnički Vjesnik. 2023; 30(3):787-96.

[41]Khan FA, Gumaei A, Derhab A, Hussain A. A novel two-stage deep learning model for efficient network intrusion detection. IEEE Access. 2019; 7:30373-85.

[42]Wang YC, Houng YC, Chen HX, Tseng SM. Network anomaly intrusion detection based on deep learning approach. Sensors. 2023; 23(4):1-21.

[43]Xu J, He Z, Zhang Y. CNN-LSTM combined network for IoT enabled fall detection applications. In journal of physics: conference series 2019 (pp. 1-6). IOP Publishing.

[44]Praanna K, Sruthi S, Kalyani K, Tejaswi AS. A CNN-LSTM model for intrusion detection system from high dimensional data. Journal of Information and Computational Science. 2020; 10(3):1362-70.

[45]Alferaidi A, Yadav K, Alharbi Y, Razmjooy N, Viriyasitavat W, Gulati K, et al. Distributed deep CNN-LSTM model for intrusion detection method in IoT-based vehicles. Mathematical Problems in Engineering. 2022; 2022:1-8.

[46]Alkahtani H, Aldhyani TH. Botnet attack detection by using CNN-LSTM model for internet of things applications. Security and Communication Networks. 2021; 2021:1-23.

[47]https://www.unb.ca/cic/datasets/ids-2018.html. Accessed 28 February 2020.

[48]Khan MA. HCRNNIDS: hybrid convolutional recurrent neural network-based network intrusion detection system. Processes. 2021; 9(5):1-14.

[49]https://ieee-dataport.org/open-access/iot-network-intrusion-dataset. Accessed 16 November 2020.

[50]https://ieee-dataport.org/open-access/mqtt-iot-ids2020-mqtt- internet-things-intrusion-detection-dataset. Accessed 16 November 2020.

[51]https://research.unsw.edu.au/projects/bot-iot-dataset. Accessed 21 March 2021.

[52]Alhowaide A, Alsmadi I, Tang J. Towards the design of real-time autonomous IoT NIDS. Cluster Computing. 2021:1-4.

[53]Vujović Ž. Classification model evaluation metrics. International Journal of Advanced Computer Science and Applications. 2021; 12(6):599-606.

[54]Kim A, Park M, Lee DH. AI-IDS: application of deep learning to real-time web intrusion detection. IEEE Access. 2020; 8:70245-61.

[55]Zhang X, Zhou Y, Pei S, Zhuge J, Chen J. Adversarial examples detection for XSS attacks based on generative adversarial networks. IEEE Access. 2020; 8:10989-96.

[56]Sun P, Liu P, Li Q, Liu C, Lu X, Hao R, et al. DL-IDS: extracting features using CNN-LSTM hybrid network for intrusion detection system. Security and Communication Networks. 2020; 2020:1-11.

[57]Binbusayyis A, Vaiyapuri T. Unsupervised deep learning approach for network intrusion detection combining convolutional autoencoder and one-class SVM. Applied Intelligence. 2021; 51(10):7094-108.

[58]Wu Z, Zhang H, Wang P, Sun Z. RTIDS: a robust transformer-based approach for intrusion detection system. IEEE Access. 2022; 10:64375-87.

[59]Umair MB, Iqbal Z, Faraz MA, Khan MA, Zhang YD, Razmjooy N, et al. A network intrusion detection system using hybrid multilayer deep learning model. Big Data. 2022.