MedBIoT: Generation of an IoT Botnet Dataset in a Medium-sized IoT Network

被引:91
作者
Guerra-Manzanares, Alejandro [1 ]
Medina-Galindo, Jorge [1 ]
Bahsi, Hayretdin [1 ]
Nomm, Sven [1 ]
机构
[1] Tallinn Univ Technol, Dept Software Sci, Tallinn, Estonia
来源
ICISSP: PROCEEDINGS OF THE 6TH INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY | 2020年
关键词
Botnet; Internet of Things; Dataset; Intrusion Detection; Anomaly Detection; IoT; INTRUSION DETECTION SYSTEMS; INTERNET; THINGS; MIRAI;
D O I
10.5220/0009187802070218
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
The exponential growth of the Internet of Things in conjunction with the traditional lack of security mechanisms and resource constraints associated with these devices have posed new risks and challenges to security in networks. IoT devices are compromised and used as amplification platforms by cyber-attackers, such as DDoS attacks. Machine learning-based intrusion detection systems aim to overcome network security limitations relying heavily on data quantity and quality. In the case of IoT networks these data are scarce and limited to small-sized networks. This research addresses this issue by providing a labelled behavioral IoT data set, which includes normal and actual botnet malicious network traffic, in a medium-sized IoT network infrastructure (83 IoT devices). Three prominent botnet malware are deployed and data from botnet infection, propagation and communication with C&C stages are collected (Mirai, BashLite and Torii). Binary and multi-class machine learning classification models are run on the acquired data demonstrating the suitability and reliability of the generated data set for machine learning-based botnet detection IDS testing, design and deployment. The generated IoT behavioral data set is released publicly available as MedBIoT data set*.
引用
收藏
页码:207 / 218
页数:12
相关论文
共 41 条
[1]  
Antonakakis M, 2017, PROCEEDINGS OF THE 26TH USENIX SECURITY SYMPOSIUM (USENIX SECURITY '17), P1093
[2]  
Asokan A, 2019, MASSIVE BOTNET ATTAC
[3]   A Critical Review of Practices and Challenges in Intrusion Detection Systems for IoT: Toward Universal and Resilient Systems [J].
Benkhelifa, Elhadj ;
Welsh, Thomas ;
Hamouda, Walaa .
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2018, 20 (04) :3496-3509
[4]   Botnets and Internet of Things Security [J].
Bertino, Elisa ;
Islam, Nayeem .
COMPUTER, 2017, 50 (02) :76-79
[5]  
Bezerra V.H., 2018, P ANAIS 18 SIMP SIO
[6]  
Bezerra V.H, 2018, DATA SET
[7]  
Bolzoni D., 2009, Revisiting anomaly-based network intrusion detection systems
[8]  
Bosche A., 2018, Unlocking Opportunities in the Internet of Things," ed
[9]   A Survey of Intrusion Detection Systems in Wireless Sensor Networks [J].
Butun, Ismail ;
Morgera, Salvatore D. ;
Sankar, Ravi .
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2014, 16 (01) :266-282
[10]  
Doffman Z., 2019, Cyberattacks on iot devices surge 300% in 2019,'measured in billions,'report claims