N-BaIoT: Network-based Detection of IoT Botnet Attacks Using Deep Autoencoders

Add code
May 09, 2018
Yair Meidan, Michael Bohadana, Yael Mathov, Yisroel Mirsky, Dominik Breitenbacher, Asaf Shabtai, Yuval Elovici
Figure 1 for N-BaIoT: Network-based Detection of IoT Botnet Attacks Using Deep Autoencoders
Figure 2 for N-BaIoT: Network-based Detection of IoT Botnet Attacks Using Deep Autoencoders
Figure 3 for N-BaIoT: Network-based Detection of IoT Botnet Attacks Using Deep Autoencoders
Figure 4 for N-BaIoT: Network-based Detection of IoT Botnet Attacks Using Deep Autoencoders

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

The proliferation of IoT devices which can be more easily compromised than desktop computers has led to an increase in the occurrence of IoT based botnet attacks. In order to mitigate this new threat there is a need to develop new methods for detecting attacks launched from compromised IoT devices and differentiate between hour and millisecond long IoTbased attacks. In this paper we propose and empirically evaluate a novel network based anomaly detection method which extracts behavior snapshots of the network and uses deep autoencoders to detect anomalous network traffic emanating from compromised IoT devices. To evaluate our method, we infected nine commercial IoT devices in our lab with two of the most widely known IoT based botnets, Mirai and BASHLITE. Our evaluation results demonstrated our proposed method's ability to accurately and instantly detect the attacks as they were being launched from the compromised IoT devices which were part of a botnet.

* Accepted for publication in July September issue of IEEE Pervasive Computing  
View paper onarxiv icon

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon