As the number of IoT devices has increased rapidly, IoT botnets have exploited the vulnerabilities of IoT devices. However, it is still challenging to detect the initial intrusion on IoT devices prior to massive attacks. Recent studies have utilized power side-channel information to characterize this intrusion behavior on IoT devices but still lack real-time detection approaches. This study aimed to design an online intrusion detection system called DeepAuditor for IoT devices via power auditing. To realize the real-time system, we first proposed a lightweight power auditing device called Power Auditor. With the Power Auditor, we developed a Distributed CNN classifier for online inference in our laboratory setting. In order to protect data leakage and reduce networking redundancy, we also proposed a privacy-preserved inference protocol via Packed Homomorphic Encryption and a sliding window protocol in our system. The classification accuracy and processing time were measured in our laboratory settings. We also demonstrated that the distributed CNN design is secure against any distributed components. Overall, the measurements were shown to the feasibility of our real-time distributed system for intrusion detection on IoT devices.
翻译:由于IoT装置的数量迅速增加,IoT 肉毒杆菌利用了IoT装置的弱点,然而,在大规模攻击之前发现IoT装置的最初侵入仍具有挑战性;最近的研究利用电侧道信息来说明IoT装置的侵入行为,但仍然缺乏实时探测方法;这项研究的目的是设计一个称为EepAuditor的通过电力审计进行IoT装置的在线入侵探测系统;为了实现实时系统,我们首先提议了一个轻型功率审计装置,称为Power审计员。我们与Power审计员一起开发了一个在实验室设置中进行在线推断的CNN分类器。为了保护数据泄漏和减少联网冗余,我们还提议了一个通过包装基因加密和我们系统中的滑动窗口规程作出的隐私预测规程。在实验室环境中测量了分类准确度和处理时间。我们还表明,已分发的CNN设计对分布的部件是安全的。总的来说,测量显示我们实时分配的IoT装置入侵探测系统的可行性。
相关内容
微信扫码咨询专知VIP会员