TY - JOUR
T1 - Machine learning-based IoT-botnet attack detection with sequential architecture
AU - Soe, Yan Naung
AU - Feng, Yaokai
AU - Santosa, Paulus Insap
AU - Hartanto, Rudy
AU - Sakurai, Kouichi
N1 - Funding Information:
Funding: This work was supported by AUN/SEED-Net Project (JICA). It was also partially supported by Strategic International Research Cooperative Program, Japan Science and Technology Agency (JST), JSPS KAKENHI Grant Numbers JP17K00187 and JP18K11295.
Publisher Copyright:
© 2020 by the authors. Licensee MDPI, Basel, Switzerland.
PY - 2020/8/2
Y1 - 2020/8/2
N2 - With the rapid development and popularization of Internet of Things (IoT) devices, an increasing number of cyber-attacks are targeting such devices. It was said that most of the attacks in IoT environments are botnet-based attacks. Many security weaknesses still exist on the IoT devices because most of them have not enough memory and computational resource for robust security mechanisms. Moreover, many existing rule-based detection systems can be circumvented by attackers. In this study, we proposed a machine learning (ML)-based botnet attack detection framework with sequential detection architecture. An efficient feature selection approach is adopted to implement a lightweight detection system with a high performance. The overall detection performance achieves around 99% for the botnet attack detection using three different ML algorithms, including artificial neural network (ANN), J48 decision tree, and Naïve Bayes. The experiment result indicates that the proposed architecture can effectively detect botnet-based attacks, and also can be extended with corresponding sub-engines for new kinds of attacks.
AB - With the rapid development and popularization of Internet of Things (IoT) devices, an increasing number of cyber-attacks are targeting such devices. It was said that most of the attacks in IoT environments are botnet-based attacks. Many security weaknesses still exist on the IoT devices because most of them have not enough memory and computational resource for robust security mechanisms. Moreover, many existing rule-based detection systems can be circumvented by attackers. In this study, we proposed a machine learning (ML)-based botnet attack detection framework with sequential detection architecture. An efficient feature selection approach is adopted to implement a lightweight detection system with a high performance. The overall detection performance achieves around 99% for the botnet attack detection using three different ML algorithms, including artificial neural network (ANN), J48 decision tree, and Naïve Bayes. The experiment result indicates that the proposed architecture can effectively detect botnet-based attacks, and also can be extended with corresponding sub-engines for new kinds of attacks.
UR - http://www.scopus.com/inward/record.url?scp=85089219527&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85089219527&partnerID=8YFLogxK
U2 - 10.3390/s20164372
DO - 10.3390/s20164372
M3 - Article
C2 - 32764394
AN - SCOPUS:85089219527
SN - 1424-8220
VL - 20
SP - 1
EP - 15
JO - Sensors (Switzerland)
JF - Sensors (Switzerland)
IS - 16
M1 - 4372
ER -