Monitoring and Detection of Security Events through IoT Device Identification Using Application Layer Protocols

Abstract

Internet of Things network is based on the distributed infrastructure as large of number of devices connected to the network makes the network an ultra-dense network. The profound devices are becoming capable of connecting to the other devices operating on different networks nature and different architecture thus giving birth to the heterogenic nature of the networks. In such environment where incident responders face challenges postured by the event occurred from IoT device networks becomes difficult to gather, analyze and examine its impending traces. This study proposed a contrivance to fetch and provide the information of the IoT devices connected to a certain network using protocols of application layers and associated open ports to the investigators and incident responders. This will be helpful in detecting and identifying the IoT devices connected to the network that will to a significant certainty aided to the work of investigators. For this purpose, a tool will be presented through series of experiments and algorithmic development. The results of the experiment shows that the proposed tool effectively identified the IoT devices associated with open ports and also classification of the IoT and non-IoT devices is achieved.