Cargando…
Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions
The past few years have witnessed a substantial increase in cyberattacks on Internet of Things (IoT) devices and their networks. Such attacks pose a significant threat to organizational security and user privacy. Utilizing Machine Learning (ML) in Intrusion Detection Systems (NIDS) has proven advant...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9412997/ https://www.ncbi.nlm.nih.gov/pubmed/36015924 http://dx.doi.org/10.3390/s22166164 |
| _version_ | 1784775630410219520 |
|---|---|
| author | Awad, Mohammed Fraihat, Salam Salameh, Khouloud Al Redhaei, Aneesa |
| author_facet | Awad, Mohammed Fraihat, Salam Salameh, Khouloud Al Redhaei, Aneesa |
| author_sort | Awad, Mohammed |
| collection | PubMed |
| description | The past few years have witnessed a substantial increase in cyberattacks on Internet of Things (IoT) devices and their networks. Such attacks pose a significant threat to organizational security and user privacy. Utilizing Machine Learning (ML) in Intrusion Detection Systems (NIDS) has proven advantageous in countering novel zero-day attacks. However, the performance of such systems relies on several factors, one of which is prediction time. Processing speed in anomaly-based NIDS depends on a few elements, including the number of features fed to the ML model. NetFlow, a networking industry-standard protocol, offers many features that can be used to predict malicious attacks accurately. This paper examines NetFlow features and assesses their suitability in classifying network traffic. Our paper presents a model that detects attacks with (98–100%) accuracy using as few as 13 features. This study was conducted using a large dataset of over 16 million records released in 2021. |
| format | Online Article Text |
| id | pubmed-9412997 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-94129972022-08-27 Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions Awad, Mohammed Fraihat, Salam Salameh, Khouloud Al Redhaei, Aneesa Sensors (Basel) Article The past few years have witnessed a substantial increase in cyberattacks on Internet of Things (IoT) devices and their networks. Such attacks pose a significant threat to organizational security and user privacy. Utilizing Machine Learning (ML) in Intrusion Detection Systems (NIDS) has proven advantageous in countering novel zero-day attacks. However, the performance of such systems relies on several factors, one of which is prediction time. Processing speed in anomaly-based NIDS depends on a few elements, including the number of features fed to the ML model. NetFlow, a networking industry-standard protocol, offers many features that can be used to predict malicious attacks accurately. This paper examines NetFlow features and assesses their suitability in classifying network traffic. Our paper presents a model that detects attacks with (98–100%) accuracy using as few as 13 features. This study was conducted using a large dataset of over 16 million records released in 2021. MDPI 2022-08-17 /pmc/articles/PMC9412997/ /pubmed/36015924 http://dx.doi.org/10.3390/s22166164 Text en © 2022 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Awad, Mohammed Fraihat, Salam Salameh, Khouloud Al Redhaei, Aneesa Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions |
| title | Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions |
| title_full | Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions |
| title_fullStr | Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions |
| title_full_unstemmed | Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions |
| title_short | Examining the Suitability of NetFlow Features in Detecting IoT Network Intrusions |
| title_sort | examining the suitability of netflow features in detecting iot network intrusions |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9412997/ https://www.ncbi.nlm.nih.gov/pubmed/36015924 http://dx.doi.org/10.3390/s22166164 |
| work_keys_str_mv | AT awadmohammed examiningthesuitabilityofnetflowfeaturesindetectingiotnetworkintrusions AT fraihatsalam examiningthesuitabilityofnetflowfeaturesindetectingiotnetworkintrusions AT salamehkhouloud examiningthesuitabilityofnetflowfeaturesindetectingiotnetworkintrusions AT alredhaeianeesa examiningthesuitabilityofnetflowfeaturesindetectingiotnetworkintrusions |