A distributed IDS architecture model for Smart Home systems
Mariusz Gajewski , Jordi Mongay Batalla , George Mastorakis , Constandinos X. Mavromoustakis
AbstractThe common use of smart devices encourages potential attackers to violate privacy. Sometimes taking control of one device allows the attacker to obtain secret data (such as password for home WiFi network) or tools to carry out DoS attack, and this, despite the limited resources of such devices. One of the solutions for gaining users’ confidence is to assign responsibility for detecting attacks to the service provider, particularly Internet Service Provider (ISP). It is possible, since ISP often provides also the Home Gateway (HG)—device that has multiple roles: residential router, entertainment center, and home’s “command and control” center which allows to manage the Smart Home entities. The ISP may extend this set of functionalities by implementing an intrusion detection software in HG provisioned to their customers. In this article we propose an Intrusion Detection System (IDS) distributed between devices residing at user’s and ISP’s premises. The Home Gateway IDS and the ISP’s IDS constitute together a distributed structure which allows spreading computations related to attacks against Smart Home ecosystem. On the other hand, it also leverages the operator’s knowledge of security incidents across the customer premises. This distributed structure is supported by the ISP’s expert system that helps to detect distributed attacks i.e., using botnets.
|Journal series||Cluster Computing-The Journal of Networks Software Tools and Applications, ISSN 1386-7857|
|Publication size in sheets||0.5|
|Keywords in English||Smart Home Home Gateway Intrusion detection system Internet of Things|
|Project||ID-based Secure COMmunications system for unified access in IoT. Project leader: Krawiec Piotr,
, Phone: +48 22 234 7231, start date 01-04-2014, planned end date 31-03-2017, end date 31-05-2017, IT/2014/badawczy/40, Completed
Full-managed secure gateway for Home Automation Systems. Project leader: Mongay Batalla Jordi, , Phone: +48 22 234-, start date 01-12-2017, planned end date 30-11-2020, IT/2017/badawczy/53, Implemented
The Develpment of Digital Communicatios. Project leader: Siuzdak Jerzy, , Phone: +48 22 234-7868, start date 07-06-2017, end date 30-11-2018, IT/2017/statut, Completed
|License||Journal (articles only); author's original; ; after publication|
|Score||= 30.0, 15-07-2020, ArticleFromJournal|
|Publication indicators||= 1; = 2; : 2018 = 0.981; : 2018 = 1.851 (2) - 2018=1.901 (5)|
* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.