A distributed IDS architecture model for Smart Home systems

Mariusz Gajewski , Jordi Mongay Batalla , George Mastorakis , Constandinos X. Mavromoustakis

Abstract

The common use of smart devices encourages potential attackers to violate privacy. Sometimes taking control of one device allows the attacker to obtain secret data (such as password for home WiFi network) or tools to carry out DoS attack, and this, despite the limited resources of such devices. One of the solutions for gaining users’ confidence is to assign responsibility for detecting attacks to the service provider, particularly Internet Service Provider (ISP). It is possible, since ISP often provides also the Home Gateway (HG)—device that has multiple roles: residential router, entertainment center, and home’s “command and control” center which allows to manage the Smart Home entities. The ISP may extend this set of functionalities by implementing an intrusion detection software in HG provisioned to their customers. In this article we propose an Intrusion Detection System (IDS) distributed between devices residing at user’s and ISP’s premises. The Home Gateway IDS and the ISP’s IDS constitute together a distributed structure which allows spreading computations related to attacks against Smart Home ecosystem. On the other hand, it also leverages the operator’s knowledge of security incidents across the customer premises. This distributed structure is supported by the ISP’s expert system that helps to detect distributed attacks i.e., using botnets.
Author Mariusz Gajewski - Instytut Łączności PIB (IŁ PIB)
Mariusz Gajewski,,
-
, Jordi Mongay Batalla (FEIT / IT)
Jordi Mongay Batalla,,
- The Institute of Telecommunications
, George Mastorakis - Technological Educational Insitute of Crete (TEI)
George Mastorakis,,
-
, Constandinos X. Mavromoustakis - University of Nicosia (UNIC)
Constandinos X. Mavromoustakis,,
-
Journal seriesCluster Computing-The Journal of Networks Software Tools and Applications, ISSN 1386-7857, (A 30 pkt)
Issue year2018
Vol00
No00
Pages1-11
Publication size in sheets0.5
Keywords in EnglishSmart Home Home Gateway Intrusion detection system Internet of Things
DOIDOI:10.1007/s10586-017-1105-z
projectID-based Secure COMmunications system for unified access in IoT. Project leader: Krawiec Piotr, , Phone: +48 22 234 7231, start date 01-04-2014, planned end date 31-03-2017, end date 31-05-2017, IT/2014/badawczy/40, Completed
WEiTI Projects financed by NCRD [Projekty finansowane przez NCBiR (NCBR)]
Full-managed secure gateway for Home Automation Systems. Project leader: Mongay Batalla Jordi, , Phone: +48 22 234-7886, start date 01-12-2017, planned end date 30-11-2020, IT/2017/badawczy/53, Implemented
WEiTI Projects financed by NCRD [Projekty finansowane przez NCBiR (NCBR)]
The Develpment of Digital Communicatios. Project leader: Siuzdak Jerzy, , Phone: +48 22 234-7868, start date 07-06-2017, planned end date 30-11-2018, IT/2017/statut, Implemented
WEiTI Działalność statutowa
Languageen angielski
LicenseJournal (articles only); author's original; Uznanie Autorstwa (CC-BY); after publication
File
10.1007%2Fs10586-017-1105-z.pdf 902.45 KB
Score (nominal)20
Publication indicators WoS Impact Factor: 2016 = 2.04 (2) - 2016=2.076 (5)
Citation count*
Cite
Share Share

Get link to the record


* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.
Back