A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog

Cyber-attack detection via on-gadget embedded models and cloud systems are widely used for the Internet of Medical Things (IoMT). The former has a limited computation ability, whereas the latter has a long detection time. Fog-based attack detection is alternatively used to overcome these problems. H...

Descripción completa

Detalles Bibliográficos
Autores principales: Hameed, Shilan S., Selamat, Ali, Abdul Latiff, Liza, Razak, Shukor A., Krejcar, Ondrej, Fujita, Hamido, Ahmad Sharif, Mohammad Nazir, Omatu, Sigeru
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2021
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8708644/
https://www.ncbi.nlm.nih.gov/pubmed/34960384
http://dx.doi.org/10.3390/s21248289
_version_ 1784622737325555712
author Hameed, Shilan S.
Selamat, Ali
Abdul Latiff, Liza
Razak, Shukor A.
Krejcar, Ondrej
Fujita, Hamido
Ahmad Sharif, Mohammad Nazir
Omatu, Sigeru
author_facet Hameed, Shilan S.
Selamat, Ali
Abdul Latiff, Liza
Razak, Shukor A.
Krejcar, Ondrej
Fujita, Hamido
Ahmad Sharif, Mohammad Nazir
Omatu, Sigeru
author_sort Hameed, Shilan S.
collection PubMed
description Cyber-attack detection via on-gadget embedded models and cloud systems are widely used for the Internet of Medical Things (IoMT). The former has a limited computation ability, whereas the latter has a long detection time. Fog-based attack detection is alternatively used to overcome these problems. However, the current fog-based systems cannot handle the ever-increasing IoMT’s big data. Moreover, they are not lightweight and are designed for network attack detection only. In this work, a hybrid (for host and network) lightweight system is proposed for early attack detection in the IoMT fog. In an adaptive online setting, six different incremental classifiers were implemented, namely a novel Weighted Hoeffding Tree Ensemble (WHTE), Incremental K-Nearest Neighbors (IKNN), Incremental Naïve Bayes (INB), Hoeffding Tree Majority Class (HTMC), Hoeffding Tree Naïve Bayes (HTNB), and Hoeffding Tree Naïve Bayes Adaptive (HTNBA). The system was benchmarked with seven heterogeneous sensors and a NetFlow data infected with nine types of recent attack. The results showed that the proposed system worked well on the lightweight fog devices with ~100% accuracy, a low detection time, and a low memory usage of less than 6 MiB. The single-criteria comparative analysis showed that the WHTE ensemble was more accurate and was less sensitive to the concept drift.
format Online
Article
Text
id pubmed-8708644
institution National Center for Biotechnology Information
language English
publishDate 2021
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-87086442021-12-25 A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog Hameed, Shilan S. Selamat, Ali Abdul Latiff, Liza Razak, Shukor A. Krejcar, Ondrej Fujita, Hamido Ahmad Sharif, Mohammad Nazir Omatu, Sigeru Sensors (Basel) Article Cyber-attack detection via on-gadget embedded models and cloud systems are widely used for the Internet of Medical Things (IoMT). The former has a limited computation ability, whereas the latter has a long detection time. Fog-based attack detection is alternatively used to overcome these problems. However, the current fog-based systems cannot handle the ever-increasing IoMT’s big data. Moreover, they are not lightweight and are designed for network attack detection only. In this work, a hybrid (for host and network) lightweight system is proposed for early attack detection in the IoMT fog. In an adaptive online setting, six different incremental classifiers were implemented, namely a novel Weighted Hoeffding Tree Ensemble (WHTE), Incremental K-Nearest Neighbors (IKNN), Incremental Naïve Bayes (INB), Hoeffding Tree Majority Class (HTMC), Hoeffding Tree Naïve Bayes (HTNB), and Hoeffding Tree Naïve Bayes Adaptive (HTNBA). The system was benchmarked with seven heterogeneous sensors and a NetFlow data infected with nine types of recent attack. The results showed that the proposed system worked well on the lightweight fog devices with ~100% accuracy, a low detection time, and a low memory usage of less than 6 MiB. The single-criteria comparative analysis showed that the WHTE ensemble was more accurate and was less sensitive to the concept drift. MDPI 2021-12-11 /pmc/articles/PMC8708644/ /pubmed/34960384 http://dx.doi.org/10.3390/s21248289 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Hameed, Shilan S.
Selamat, Ali
Abdul Latiff, Liza
Razak, Shukor A.
Krejcar, Ondrej
Fujita, Hamido
Ahmad Sharif, Mohammad Nazir
Omatu, Sigeru
A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog
title A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog
title_full A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog
title_fullStr A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog
title_full_unstemmed A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog
title_short A Hybrid Lightweight System for Early Attack Detection in the IoMT Fog
title_sort hybrid lightweight system for early attack detection in the iomt fog
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8708644/
https://www.ncbi.nlm.nih.gov/pubmed/34960384
http://dx.doi.org/10.3390/s21248289
work_keys_str_mv AT hameedshilans ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT selamatali ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT abdullatiffliza ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT razakshukora ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT krejcarondrej ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT fujitahamido ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT ahmadsharifmohammadnazir ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT omatusigeru ahybridlightweightsystemforearlyattackdetectionintheiomtfog
AT hameedshilans hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT selamatali hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT abdullatiffliza hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT razakshukora hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT krejcarondrej hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT fujitahamido hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT ahmadsharifmohammadnazir hybridlightweightsystemforearlyattackdetectionintheiomtfog
AT omatusigeru hybridlightweightsystemforearlyattackdetectionintheiomtfog

Ejemplares similares