Efficient Autonomous Defense System Using Machine Learning on Edge Device

IF 2 4区计算机科学 Q3 COMPUTER SCIENCE, INFORMATION SYSTEMS

Cmc-computers Materials & Continua Pub Date : 2022-01-01 DOI:10.32604/cmc.2022.020826

Jaehyuk Cho

{"title":"Efficient Autonomous Defense System Using Machine Learning on Edge Device","authors":"Jaehyuk Cho","doi":"10.32604/cmc.2022.020826","DOIUrl":null,"url":null,"abstract":": As a large amount of data needs to be processed and speed needs to be improved, edge computing with ultra-low latency and ultra-connectivity is emerging as a new paradigm. These changes can lead to new cyber risks, and should therefore be considered for a security threat model. To this end, we constructed an edge system to study security in two directions, hardware and software. First, on the hardware side, we want to autonomically defend against hardware attacks such as side channel attacks by configuring field programmable gate array (FPGA) which is suitable for edge computing and identifying communication status to control the communication method according to priority. In addition, on the software side, data collected on the server performs end-to-end encryption via symmetric encryption keys. Also, we modeled autonomous defense systems on the server by using machine learning which targets to incoming and outgoing logs. Server log utilizes existing intrusion detection datasets that should be used in real-world environ-ments. Server log was used to detect intrusion early by modeling an intrusion prevention system to identify behaviors that violate security policy, and to utilize the existing intrusion detection data set that should be used in a real environment. Through this, we designed an efficient autonomous defense system that can provide a stable system by detecting abnormal signals from the device and converting them to an effective method to control edge computing, and to detect and control abnormal intrusions on the server side.","PeriodicalId":10440,"journal":{"name":"Cmc-computers Materials & Continua","volume":"31 1","pages":""},"PeriodicalIF":2.0000,"publicationDate":"2022-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Cmc-computers Materials & Continua","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.32604/cmc.2022.020826","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 4

Abstract

: As a large amount of data needs to be processed and speed needs to be improved, edge computing with ultra-low latency and ultra-connectivity is emerging as a new paradigm. These changes can lead to new cyber risks, and should therefore be considered for a security threat model. To this end, we constructed an edge system to study security in two directions, hardware and software. First, on the hardware side, we want to autonomically defend against hardware attacks such as side channel attacks by configuring field programmable gate array (FPGA) which is suitable for edge computing and identifying communication status to control the communication method according to priority. In addition, on the software side, data collected on the server performs end-to-end encryption via symmetric encryption keys. Also, we modeled autonomous defense systems on the server by using machine learning which targets to incoming and outgoing logs. Server log utilizes existing intrusion detection datasets that should be used in real-world environ-ments. Server log was used to detect intrusion early by modeling an intrusion prevention system to identify behaviors that violate security policy, and to utilize the existing intrusion detection data set that should be used in a real environment. Through this, we designed an efficient autonomous defense system that can provide a stable system by detecting abnormal signals from the device and converting them to an effective method to control edge computing, and to detect and control abnormal intrusions on the server side.

查看原文本刊更多论文

基于边缘设备机器学习的高效自主防御系统

:由于需要处理大量数据，并且需要提高速度，超低延迟和超连接的边缘计算正在成为一种新的范式。这些变化可能导致新的网络风险，因此应该在安全威胁模型中加以考虑。为此，我们构建了一个边缘系统，从硬件和软件两个方向研究安全性。首先，在硬件方面，我们希望通过配置适合边缘计算的现场可编程门阵列(FPGA)和识别通信状态，根据优先级控制通信方式，自主防御侧信道攻击等硬件攻击。此外，在软件端，服务器上收集的数据通过对称加密密钥进行端到端加密。此外，我们通过使用机器学习在服务器上建模自主防御系统，以传入和传出日志为目标。服务器日志利用应该在实际环境中使用的现有入侵检测数据集。通过对入侵防御系统进行建模，利用服务器日志对入侵进行早期检测，识别出违反安全策略的行为，并利用现有的入侵检测数据集在真实环境中使用。通过这一点，我们设计了一个高效的自主防御系统，可以通过检测来自设备的异常信号并将其转换为控制边缘计算的有效方法来提供稳定的系统，并在服务器端检测和控制异常入侵。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Cmc-computers Materials & Continua 工程技术-材料科学：综合

CiteScore

5.30

自引率

19.40%

发文量

345

审稿时长

1 months

期刊介绍： This journal publishes original research papers in the areas of computer networks, artificial intelligence, big data management, software engineering, multimedia, cyber security, internet of things, materials genome, integrated materials science, data analysis, modeling, and engineering of designing and manufacturing of modern functional and multifunctional materials. Novel high performance computing methods, big data analysis, and artificial intelligence that advance material technologies are especially welcome.