Skip to main content
SpringerLink
Log in

An Intrusion Detection System for the OneM2M Service Layer Based on Edge Machine Learning

  • Conference paper
  • First Online:
Ad-Hoc, Mobile, and Wireless Networks (ADHOC-NOW 2019)

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 11803))

Included in the following conference series:

Abstract

The number of connected Things is growing at a frantic pace, which has led to vertical, proprietary Internet of Things (IoT) solutions. To ensure a horizontal IoT cross-industry interoperability, eight of the word’s leading ICT standards bodies introduce the oneM2M standard. Its main goal is to satisfy the need for a common M2M Service Layer that guarantees the communication between heterogeneous devices and applications. Various security mechanisms have been proposed in the oneM2M specifications to protect the IoT solutions. As a complementary security level, we propose the first generic Intrusion Detection System (IDS) for the oneM2M Service Layer based on Edge Machine Leaning (ML). This oneM2M-IDS can be added to the basic architecture of oneM2M or can be added as a plugin to existing systems based on oneM2M. In this work, we define and implement oneM2M attack scenarios related to the service availability. Moreover, we propose an edge IDS architecture and we detail ML features selection. The performance of the proposed IDS is studied through multiple experiments with different ML algorithms.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    Kasinathan et al. in [14] define 6LoWPAN as “a standard protocol designed by IETF as an adaptation layer for low-power lossy networks enabling low-power devices (LLN) to communicate with the Internet”.

References

  1. MQTT, April 2019. http://mqtt.org/

  2. Bostani, H., Sheikhan, M.: Hybrid of anomaly-based and specification-based IDS for Internet of Things using unsupervised OPF based on MapReduce approach. Comput. Commun. 98(Suppl. C), 52–71 (2017)

    Article  Google Scholar 

  3. Breiman, L.: Random forests. Mach. Learn. 45(1), 5–32 (2001)

    Article  MATH  Google Scholar 

  4. Brenner, M., Unmehopa, M.: The Open Mobile Alliance: Delivering Service Enablers for Next-Generation Applications. Wiley, Hoboken (2008)

    Book  Google Scholar 

  5. Chaabouni, N., Mosbah, M., Zemmari, A., Sauvignac, C., Faruki, P.: Network intrusion detection for IoT security based on learning techniques. IEEE Commun. Surv. Tutor. 21(3), 2671–2701 (2019)

    Article  Google Scholar 

  6. Diro, A.A., Chilamkurti, N.: Distributed attack detection scheme using deep learning approach for Internet of Things. Future Gener. Comput. Syst. 82, 761–768 (2017)

    Article  Google Scholar 

  7. Douligeris, C., Mitrokotsa, A.: DDoS attacks and defense mechanisms: classification and state-of-the-art. Comput. Netw. 44(5), 643–666 (2004)

    Article  Google Scholar 

  8. Gardner, M.W., Dorling, S.R.: Artificial neural networks (the multilayer perceptron)-a review of applications in the atmospheric sciences. Atmos. Environ. 32(14), 2627–2636 (1998)

    Article  Google Scholar 

  9. Hall, M., Frank, E., Holmes, G., Pfahringer, B., Reutemann, P., Witten, I.H.: The WEKA data mining software: an update. SIGKDD Explor. Newsl. 11(1), 10–18 (2009)

    Article  Google Scholar 

  10. Hodo, E., et al.: Threat analysis of IoT networks using artificial neural network intrusion detection system. In: 2016 International Symposium on Networks, Computers and Communications (ISNCC), pp. 1–6 (May 2016)

    Google Scholar 

  11. Hosseinpour, F., Vahdani Amoli, P., Plosila, J., Hämäläinen, T., Tenhunen, H.: An intrusion detection system for fog computing and IoT based logistic systems using a smart data approach. Int. J. Digit. Content Technol. Appl. 10, 34–46 (2016)

    Google Scholar 

  12. John, G.H., Langley, P.: Estimating continuous distributions in Bayesian classifiers. In: Proceedings of the Eleventh Conference on Uncertainty in Artificial Intelligence, UAI 1995, pp. 338–345. Morgan Kaufmann Publishers Inc., San Francisco (1995)

    Google Scholar 

  13. Kasinathan, P., Costamagna, G., Khaleel, H., Pastrone, C., Spirito, M.A.: DEMO: an IDS framework for Internet of Things empowered by 6LoWPAN. In: Proceedings of the 2013 ACM SIGSAC Conference on Computer & Communications Security, CCS 2013, pp. 1337–1340. ACM, New York (November 2013)

    Google Scholar 

  14. Kasinathan, P., Pastrone, C., Spirito, M.A., Vinkovits, M.: Denial-of-Service detection in 6LoWPAN based Internet of Things. In: IEEE 9th International Conference on Wireless and Mobile Computing, Networking and Communications, pp. 600–607 (2013)

    Google Scholar 

  15. Midi, D., Rullo, A., Mudgerikar, A., Bertino, E.: Kalis a system for knowledge driven adaptable intrusion detection for the Internet of Things. In: 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS), pp. 656–666 (June 2017)

    Google Scholar 

  16. Moustafa, N., Turnbull, B., Choo, K.R.: An ensemble intrusion detection technique based on proposed statistical flow features for protecting network traffic of Internet of Things. IEEE Internet Things J. 6(3), 4815–4830 (2019)

    Article  Google Scholar 

  17. OneM2M: TS-0004-V2.7.1 Service Layer Core Protocol Specification, p. 427, August 2016

    Google Scholar 

  18. OneM2M: TS-0001-V2.18.1 Functional Architecture, p. 427, March 2018

    Google Scholar 

  19. OneM2M: TS-0003-V2.12.1 Security Solutions, p. 427, March 2018

    Google Scholar 

  20. OneM2M: oneM2m - Home, April 2019. http://www.onem2m.org/

  21. Raza, S., Wallgren, L., Voigt, T.: SVELTE: real-time intrusion detection in the Internet of Things. Ad Hoc Netw. 11(8), 2661–2674 (2013)

    Article  Google Scholar 

  22. Salzberg, S.L.: C4.5: programs for machine learning by J. Ross Quinlan. Morgan Kaufmann Publishers Inc, 1993. Mach. Learn. 16(3), 235–240 (1994)

    MathSciNet  Google Scholar 

  23. Sheikhan, M., Bostani, H.: A security mechanism for detecting intrusions in Internet of Things using selected features based on MI-BGSA. Int. J. Inf. Commun. Technol. Res. 9(2), 53–62 (2017)

    Google Scholar 

  24. Sonar, K., Upadhyay, H.: A survey: DDOS attack on Internet of Things. Int. J. Eng. Res. Dev. 10(11), 58–63 (2014)

    Google Scholar 

  25. Zeng, Z.Q., Yu, H.B., Xu, H.R., Xie, Y.Q., Gao, J.: Fast training support vector machines using parallel sequential minimal optimization. In: 2008 3rd International Conference on Intelligent System and Knowledge Engineering, vol. 1, pp. 997–1001. IEEE, November 2008

    Google Scholar 

Download references

Acknowledgement

The authors would like to thank the “Association Nationale de la Recherche et de la Technologie” (ANRT) for CIFRE funding (N\(^{\circ }\) 2017/0122).

Author information

Authors and Affiliations

  1. Univ. Bordeaux, CNRS, Bordeaux INP, LaBRI, UMR 5800, 33400, Talence, France

    Nadia Chaabouni, Mohamed Mosbah & Akka Zemmari

  2. Atos Innovation Aquitaine Lab - Atos, 33600, Pessac, France

    Nadia Chaabouni & Cyrille Sauvignac

Authors
  1. Nadia Chaabouni
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Mohamed Mosbah
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Akka Zemmari
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Cyrille Sauvignac
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Nadia Chaabouni .

Editor information

Editors and Affiliations

  1. Luxembourg Institute of Science and Technology, Belvaux, Luxembourg

    Maria Rita Palattella

  2. CNR-IEIIT, Turin, Italy

    Stefano Scanzio

  3. Koc Ăśniversitesi MĂĽhendislik, Istanbul, Turkey

    Sinem Coleri Ergen

Rights and permissions

Reprints and permissions

Copyright information

© 2019 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Chaabouni, N., Mosbah, M., Zemmari, A., Sauvignac, C. (2019). An Intrusion Detection System for the OneM2M Service Layer Based on Edge Machine Learning. In: Palattella, M., Scanzio, S., Coleri Ergen, S. (eds) Ad-Hoc, Mobile, and Wireless Networks. ADHOC-NOW 2019. Lecture Notes in Computer Science(), vol 11803. Springer, Cham. https://doi.org/10.1007/978-3-030-31831-4_35

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-31831-4_35

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-31830-7

  • Online ISBN: 978-3-030-31831-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation