面向工业网络物理系统的轻量级隐私保护联合深度入侵检测

IF 2.9 3区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Communications and Networks Pub Date : 2024-12-01 DOI:10.23919/JCN.2024.000054

Imtiaz Ali Soomro;Hamood ur Rehman Khan;Syed Jawad Hussain;Zeeshan Ashraf;Mrim M. Alnfiai;Nouf Nawar Alotaibi

{"title":"面向工业网络物理系统的轻量级隐私保护联合深度入侵检测","authors":"Imtiaz Ali Soomro;Hamood ur Rehman Khan;Syed Jawad Hussain;Zeeshan Ashraf;Mrim M. Alnfiai;Nouf Nawar Alotaibi","doi":"10.23919/JCN.2024.000054","DOIUrl":null,"url":null,"abstract":"The emergence of Industry 4.0 entails extensive reliance on industrial cyber-physical systems (ICPS). ICPS promises to revolutionize industries by fusing physical systems with computational functionality. However, this potential increase in ICPS makes them prone to cyber threats, necessitating effective intrusion detection systems (IDS) systems. Privacy provision, system complexity, and system scalability are major challenges in IDS research. We present FedSecureIDS, a novel lightweight federated deep intrusion detection system that combines CNNs, LSTMs, MLPs, and federated learning (FL) to overcome these challenges. FedSecureIDS solves major security issues, namely eavesdropping and man-in-the-middle attacks, by employing a simple protocol for symmetric session key exchange and mutual authentication. Our Experimental results demonstrate that the proposed method is effective with an accuracy of 98.68%, precision of 98.78%, recall of 98.64%, and an F1-score of 99.05% with different edge devices. The model is similarly performed in conventional centralized IDS models. We also carry out formal security evaluations to confirm the resistance of the proposed framework to known attacks and provisioning of high data privacy and security.","PeriodicalId":54864,"journal":{"name":"Journal of Communications and Networks","volume":"26 6","pages":"632-649"},"PeriodicalIF":2.9000,"publicationDate":"2024-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=10834496","citationCount":"0","resultStr":"{\"title\":\"Lightweight privacy-preserving federated deep intrusion detection for industrial cyber-physical system\",\"authors\":\"Imtiaz Ali Soomro;Hamood ur Rehman Khan;Syed Jawad Hussain;Zeeshan Ashraf;Mrim M. Alnfiai;Nouf Nawar Alotaibi\",\"doi\":\"10.23919/JCN.2024.000054\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The emergence of Industry 4.0 entails extensive reliance on industrial cyber-physical systems (ICPS). ICPS promises to revolutionize industries by fusing physical systems with computational functionality. However, this potential increase in ICPS makes them prone to cyber threats, necessitating effective intrusion detection systems (IDS) systems. Privacy provision, system complexity, and system scalability are major challenges in IDS research. We present FedSecureIDS, a novel lightweight federated deep intrusion detection system that combines CNNs, LSTMs, MLPs, and federated learning (FL) to overcome these challenges. FedSecureIDS solves major security issues, namely eavesdropping and man-in-the-middle attacks, by employing a simple protocol for symmetric session key exchange and mutual authentication. Our Experimental results demonstrate that the proposed method is effective with an accuracy of 98.68%, precision of 98.78%, recall of 98.64%, and an F1-score of 99.05% with different edge devices. The model is similarly performed in conventional centralized IDS models. We also carry out formal security evaluations to confirm the resistance of the proposed framework to known attacks and provisioning of high data privacy and security.\",\"PeriodicalId\":54864,\"journal\":{\"name\":\"Journal of Communications and Networks\",\"volume\":\"26 6\",\"pages\":\"632-649\"},\"PeriodicalIF\":2.9000,\"publicationDate\":\"2024-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=10834496\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Communications and Networks\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10834496/\",\"RegionNum\":3,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Communications and Networks","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10834496/","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

工业4.0的出现需要广泛依赖工业网络物理系统（ICPS）。ICPS承诺通过融合物理系统和计算功能来彻底改变行业。然而，这种潜在的ICPS增加使它们容易受到网络威胁，需要有效的入侵检测系统（IDS）系统。隐私提供、系统复杂性和系统可伸缩性是IDS研究中的主要挑战。我们提出了FedSecureIDS，一种新型的轻量级联邦深度入侵检测系统，它结合了cnn、lstm、mlp和联邦学习（FL）来克服这些挑战。FedSecureIDS通过一个简单的对称会话密钥交换和相互认证协议，解决了窃听和中间人攻击等主要安全问题。实验结果表明，该方法在不同边缘设备下的准确率为98.68%，精密度为98.78%，召回率为98.64%，f1分数为99.05%。该模型在传统的集中式IDS模型中执行类似。我们还进行了正式的安全评估，以确认所提出的框架对已知攻击的抵抗力，并提供高数据隐私和安全性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Lightweight privacy-preserving federated deep intrusion detection for industrial cyber-physical system

The emergence of Industry 4.0 entails extensive reliance on industrial cyber-physical systems (ICPS). ICPS promises to revolutionize industries by fusing physical systems with computational functionality. However, this potential increase in ICPS makes them prone to cyber threats, necessitating effective intrusion detection systems (IDS) systems. Privacy provision, system complexity, and system scalability are major challenges in IDS research. We present FedSecureIDS, a novel lightweight federated deep intrusion detection system that combines CNNs, LSTMs, MLPs, and federated learning (FL) to overcome these challenges. FedSecureIDS solves major security issues, namely eavesdropping and man-in-the-middle attacks, by employing a simple protocol for symmetric session key exchange and mutual authentication. Our Experimental results demonstrate that the proposed method is effective with an accuracy of 98.68%, precision of 98.78%, recall of 98.64%, and an F1-score of 99.05% with different edge devices. The model is similarly performed in conventional centralized IDS models. We also carry out formal security evaluations to confirm the resistance of the proposed framework to known attacks and provisioning of high data privacy and security.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Journal of Communications and Networks 工程技术-电信学

CiteScore

6.60

自引率

5.60%

发文量

审稿时长

14.4 months

期刊介绍： The JOURNAL OF COMMUNICATIONS AND NETWORKS is published six times per year, and is committed to publishing high-quality papers that advance the state-of-the-art and practical applications of communications and information networks. Theoretical research contributions presenting new techniques, concepts, or analyses, applied contributions reporting on experiences and experiments, and tutorial expositions of permanent reference value are welcome. The subjects covered by this journal include all topics in communication theory and techniques, communication systems, and information networks. COMMUNICATION THEORY AND SYSTEMS WIRELESS COMMUNICATIONS NETWORKS AND SERVICES.