An IoT Architecture Leveraging Digital Twins: Compromised Node Detection Scenario

IF 4 3区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Systems Journal Pub Date : 2024-06-12 DOI:10.1109/JSYST.2024.3403500

Khaled Alanezi;Shivakant Mishra

{"title":"An IoT Architecture Leveraging Digital Twins: Compromised Node Detection Scenario","authors":"Khaled Alanezi;Shivakant Mishra","doi":"10.1109/JSYST.2024.3403500","DOIUrl":null,"url":null,"abstract":"Modern Internet of Things (IoT) environments with thousands of low-end and diverse IoT nodes with complex interactions among them and often deployed in remote and/or wild locations present some unique challenges that make traditional node compromise detection services less effective. This article presents the design, implementation, and evaluation of a fog-based architecture that utilizes the concept of a digital twin to detect compromised IoT nodes exhibiting malicious behaviors by either producing erroneous data and/or being used to launch network intrusion attacks to hijack other nodes eventually causing service disruption. By defining a digital twin of an IoT infrastructure at a fog server, the architecture is focused on monitoring relevant information to save energy and storage space. This article presents a prototype implementation for the architecture utilizing malicious behavior datasets to perform misbehaving node classification. An extensive accuracy and system performance evaluation was conducted based on this prototype. Results show good accuracy and negligible overhead especially when employing deep learning techniques, such as multilayer perceptron.","PeriodicalId":55017,"journal":{"name":"IEEE Systems Journal","volume":"18 2","pages":"1224-1235"},"PeriodicalIF":4.0000,"publicationDate":"2024-06-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Systems Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10555297/","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Modern Internet of Things (IoT) environments with thousands of low-end and diverse IoT nodes with complex interactions among them and often deployed in remote and/or wild locations present some unique challenges that make traditional node compromise detection services less effective. This article presents the design, implementation, and evaluation of a fog-based architecture that utilizes the concept of a digital twin to detect compromised IoT nodes exhibiting malicious behaviors by either producing erroneous data and/or being used to launch network intrusion attacks to hijack other nodes eventually causing service disruption. By defining a digital twin of an IoT infrastructure at a fog server, the architecture is focused on monitoring relevant information to save energy and storage space. This article presents a prototype implementation for the architecture utilizing malicious behavior datasets to perform misbehaving node classification. An extensive accuracy and system performance evaluation was conducted based on this prototype. Results show good accuracy and negligible overhead especially when employing deep learning techniques, such as multilayer perceptron.

查看原文本刊更多论文

利用数字孪生的物联网架构：受损节点检测场景

现代物联网（IoT）环境中存在成千上万个低端、多样化的物联网节点，这些节点之间存在复杂的交互关系，而且通常部署在偏远和/或野外，这些独特的挑战使得传统的节点受损检测服务变得不那么有效。本文介绍了一种基于雾的架构的设计、实施和评估，该架构利用数字孪生的概念来检测受损的物联网节点，这些节点通过产生错误数据和/或用于发起网络入侵攻击来劫持其他节点，最终导致服务中断，从而表现出恶意行为。通过在雾服务器上定义物联网基础设施的数字孪生，该架构专注于监控相关信息，以节省能源和存储空间。本文介绍了该架构的原型实现，它利用恶意行为数据集对行为不端节点进行分类。基于该原型进行了广泛的准确性和系统性能评估。结果表明，尤其是在采用多层感知器等深度学习技术时，准确率很高，开销可忽略不计。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Systems Journal 工程技术-电信学

CiteScore

9.80

自引率

6.80%

发文量

572

审稿时长

4.9 months

期刊介绍： This publication provides a systems-level, focused forum for application-oriented manuscripts that address complex systems and system-of-systems of national and global significance. It intends to encourage and facilitate cooperation and interaction among IEEE Societies with systems-level and systems engineering interest, and to attract non-IEEE contributors and readers from around the globe. Our IEEE Systems Council job is to address issues in new ways that are not solvable in the domains of the existing IEEE or other societies or global organizations. These problems do not fit within traditional hierarchical boundaries. For example, disaster response such as that triggered by Hurricane Katrina, tsunamis, or current volcanic eruptions is not solvable by pure engineering solutions. We need to think about changing and enlarging the paradigm to include systems issues.