Top

Journal of Network and Systems Management

Published in:

01-01-2022

Human Immune-Based Intrusion Detection and Prevention System for Fog Computing

Authors: Farouq Aliyu, Tarek Sheltami, Mohamed Deriche, Nidal Nasser

Published in: Journal of Network and Systems Management | Issue 1/2022

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

The exponential increase in Internet of Things devices on the Internet causes a deluge of traffic at the cloud. Most of the traffic data is redundant. However, fog computing solves the problems by processing data at the network’s edge. Lately, the fog layer is a target of cyberattacks, due to its resource constraints. In this paper, we proposed a lightweight, human immune, and anomaly-based intrusion detection system (IDS) for the fog layer. The proposed system achieves low resource overhead by distributing the IDS functions among the fog nodes and the cloud. We obtained an accuracy of up to 98.8%. Also, we recorded a 10% reduction in the energy consumption of the fog node when compared with deploying a neural network on the fog node.

previous article Personalized Privacy-Preserving Publication of Trajectory Data by Generalization and Distortion of Moving Points

next article Towards Model Generalization for Intrusion Detection: Unsupervised Machine Learning Techniques

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Prabhu, C.: Fog Computing. Springer, Deep learning and big data analytics-research directions (2019)

Turner, V., MacGillivray, C., Gaw, J., Clarke, R., Morales, M., Kraus, B.: IDC futurescape: worldwide internet of things 2015 predictions. In: IDC (2014)

Computing, F.: The internet of things: extend the cloud to where the things are (2016)

Li, C., Qin, Z., Novak, E., Li, Q.: Securing SDN infrastructure of IoT-fog networks from MITM attacks. IEEE Internet Things J. 4(5), 1156–1164 (2017)CrossRef

Stojmenovic, I., Wen, S.: The fog computing paradigm: scenarios and security issues. In: 2014 federated conference on computer science and information systems, pp. 1–8 (2014). https://doi.org/10.15439/2014F503

Hu, P., Dhelim, S., Ning, H., Qiu, T.: Survey on fog computing: architecture, key technologies, applications and open issues. J. Netw. Comput. Appl. 98, 27–42 (2017)CrossRef

Sequeira, D.: Intrusion prevention systems: securitys silver bullet? Bus. Commun. Rev. 33(3), 36–41 (2003)

Mauritian Computer Emergency Response Team: guideline on intrusion detection and prevention systems (2011). https://ncb.govmu.org/portal/sites/ncb/downloads.html

Scarfone, K., Mell, P.: Special Publication 800–94: Guide to Intrusion Detection and Prevention Systems. National Institute Standard and Technology, Gaithersburg (2012)

10.

Khraisat, A., Gondal, I., Vamplew, P., Kamruzzaman, J.: Survey of intrusion detection systems: techniques, datasets and challenges. Cybersecurity 2(1), 20 (2019)CrossRef

11.

Aloqaily, M., Balasubramanian, V., Zaman, F., Al Ridhawi, I., Jararweh, Y.: Congestion mitigation in densely crowded environments for augmenting qos in vehicular clouds. In: Proceedings of the 8th ACM Symposium on Design and Analysis of Intelligent Vehicular Networks and Applications, DIVANet’18, pp. 49–56. Association for Computing Machinery, New York (2018). https://doi.org/10.1145/3272036.3272038

12.

Balasubramanian, V., Aloqaily, M., Reisslein, M.: An SDN architecture for time sensitive industrial IoT. Comput. Netw. 186, 107739 (2021). https://doi.org/10.1016/j.comnet.2020.107739CrossRef

13.

Otoum, Y., Nayak, A.: As-ids: anomaly and signature based ids for the internet of things. J. Netw. Syst. Manag. 29(3), 1–26 (2021)CrossRef

14.

Almiani, M., AbuGhazleh, A., Al-Rahayfeh, A., Atiewi, S., Razaque, A.: Deep recurrent neural network for IoT intrusion detection system. Simul. Model. Pract. Theory 101, 102031 (2020). https://doi.org/10.1016/j.simpat.2019.102031CrossRef

15.

Pacheco, J., Benitez, V.H., Félix-Herrán, L.C., Satam, P.: Artificial neural networks-based intrusion detection system for internet of things fog nodes. IEEE Access 8, 73907–73918 (2020)CrossRef

16.

Al-Omari, M., Rawashdeh, M., Qutaishat, F., Mohammad, A., Ababneh, N.: An intelligent tree-based intrusion detection model for cyber security. J. Netw. Syst. Manag. 29(2), 1–18 (2021)CrossRef

17.

Ou, C.M.: Host-based intrusion detection systems inspired by machine learning of agent-based artificial immune systems. In: 2019 IEEE International Symposium on INnovations in Intelligent SysTems and Applications (INISTA), pp. 1–5. IEEE (2019)

18.

Wang, W., Ren, L., Chen, L., Ding, Y.: Intrusion detection and security calculation in industrial cloud storage based on an improved dynamic immune algorithm. Inf. Sci. 501, 543–557 (2019)CrossRef

19.

Igbe, O., Saadawi, T., Darwish, I.: Digital immune system for intrusion detection on data processing systems and networks (2017). US Patent App. 15/633,056

20.

Greensmith, J., Aickelin, U.: The deterministic dendritic cell algorithm. In: International Conference on Artificial Immune Systems, pp. 291–302. Springer (2008)

21.

Rhys, H.: Classifying with decision trees. Manning Publications (2020). https://books.google.com.sa/books?id=jRzYDwAAQBAJ

22.

Jansen, S.: Chapter 10: decision trees and random forests. Packt Publishing (2018). https://books.google.com.sa/books?id=tx2CDwAAQBAJ

23.

Pump, R., Ahlers, V., Koschel, A.: State of the art in artificial immune-based intrusion detection systems for smart grids. In: 2018 Second World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4), pp. 119–126. IEEE (2018)

24.

Matzinger, P.: Tolerance, danger, and the extended family. Ann. Rev. Immunol. 12(1), 991–1045 (1994)CrossRef

25.

Brownlee, J.: Clever algorithms: nature-inspired programming recipes. Lulu.com (2011). https://books.google.com.sa/books?id=SESWXQphCUkC

26.

Hosseinpour, F., Amoli, P.V., Farahnakian, F., Plosila, J., Hämäläinen, T.: Artificial immune system based intrusion detection: innate immunity using an unsupervised learning approach. Int. J. Digital Content Technol. Appl. 8(5), 1 (2014)

27.

Hosseinpour, F., Vahdani Amoli, P., Plosila, J., Hämäläinen, T., Tenhunen, H.: An intrusion detection system for fog computing and IoT based logistic systems using a smart data approach. Int. J. Digital Content Technol. Appl. 10 (2016)

28.

Ye, N., Chen, Q.: An anomaly detection technique based on a chi-square statistic for detecting intrusions into information systems. Qual. Reliab. Eng. Int. 17(2), 105–112 (2001). https://doi.org/10.1002/qre.392CrossRef

29.

Hegde, C., Jiang, Z., Suresha, P.B., Zelko, J., Seyedi, S., Smith, M.A., Wright, D.W., Kamaleswaran, R., Reyna, M.A., Clifford, G.D.: Autotriage—an open source edge computing raspberry pi-based clinical screening system. medRxiv (2020). https://doi.org/10.1101/2020.04.09.20059840

30.

Xhafa, F., Kilic, B., Krause, P.: Evaluation of IoT stream processing at edge computing layer for semantic data enrichment. Fut. Gener. Comput. Syst. 105, 730–736 (2020). https://doi.org/10.1016/j.future.2019.12.031CrossRef

31.

Xunlong Software CO., Limited: orange pi lite—orange pi (2016). http://www.orangepi.org/orangepilite/. Accessed May, 2020

32.

Nath, O.: Review on raspberry pi 3b+ and its scope. Int. J. Eng. Appl. Sci. Technol. 4(9), 157–159 (2020)

33.

LCD wiki: 3.5inch rpi display - lcd wiki (2020). http://www.lcdwiki.com/3.5inch_RPi_Display. Accessed 17th Aug 2020

34.

Crovella, M.E., Carter, R.L.: Dynamic server selection in the internet. In: Third IEEE workshop on the architecture and implementation of high performance communication subsystems (HPCS) (1995)

35.

OpenNN.net: Opennn: open neural networks library (2020). https://www.opennn.net/

36.

Pedregosa, F., Varoquaux, G., Gramfort, A., Michel, V., Thirion, B., Grisel, O., Blondel, M., Prettenhofer, P., Weiss, R., Dubourg, V., et al.: Scikit-learn: machine learning in python. J. Mach. Learn. Res. 12, 2825–2830 (2011)MathSciNetMATH

37.

Long, J.: Interesting native code examples (2012). https://bit.ly/3fYmfkN. Accessed 25 May 2020

38.

What is omnet++? (2019). https://omnetpp.org/intro/. Accessed 6 June 2020

39.

Sudqi Khater, B., Abdul Wahab, A., Idris, M., Abdulla Hussain, M., Ahmed Ibrahim, A.: A lightweight perceptron-based intrusion detection system for fog computing. Appl. Sci. 9(1), 178 (2019)CrossRef

40.

Krügel, C., Toth, T., Kirda, E.: Service specific anomaly detection for network intrusion detection. In: Proceedings of the 2002 ACM symposium on applied computing, pp. 201–208 (2002)

41.

Farouq, A., Tarek, S., Mohamed, D.: faroouq/idps\_omnet: Intrusion detection and prevention system for fog computing using omnet++ (2020). https://github.com/faroouq/IDPS_OMNET

Title: Human Immune-Based Intrusion Detection and Prevention System for Fog Computing
Authors: Farouq Aliyu
Tarek Sheltami
Mohamed Deriche
Nidal Nasser
Publication date: 01-01-2022
Publisher: Springer US
Published in: Journal of Network and Systems Management / Issue 1/2022
Print ISSN: 1064-7570
Electronic ISSN: 1573-7705
DOI: https://doi.org/10.1007/s10922-021-09616-6

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Other articles of this Issue 1/2022

Machine-Learning-Enabled DDoS Attacks Detection in P4 Programmable Networks

Service Function Chain Placement in Distributed Scenarios: A Systematic Review

Design of a Security and Trust Framework for 5G Multi-domain Scenarios

Model-Based Performability and Dependability Evaluation of a System with VM Migration as Rejuvenation in the Presence of Bursty Workloads

PassMon: A Technique for Password Generation and Strength Estimation

Energy-Efficient Delay-Aware Task Offloading in Fog-Cloud Computing System for IoT Sensor Applications

Premium Partner