Enhancing IoT Security: A Novel Feature Engineering Approach for ML-Based Intrusion Detection Systems

Afsaneh Mahanipour, Hana Khamfroush

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The integration of Internet of Things (IoT) applications in our daily lives has led to a surge in data traffic, posing significant security challenges. IoT applications using cloud and edge computing are at higher risk of cyberattacks because of the expanded attack surface from distributed edge and cloud services, the vulnerability of IoT devices, and challenges in managing security across interconnected systems leading to oversights. This led to the rise of ML-based solutions for intrusion detection systems (IDSs), which have proven effective in enhancing network security and defending against diverse threats. However, ML-based IDS in IoT systems encounters challenges, particularly from noisy, redundant, and irrelevant features in varied IoT datasets, potentially impacting its performance. Therefore, reducing such features becomes crucial to enhance system performance and minimize computational costs. This paper focuses on improving the effectiveness of ML-based IDS at the edge level by introducing a novel method to find a balanced trade-off between cost and accuracy through the creation of informative features in a two-tier edge-user IoT environment. A hybrid Binary Quantum-inspired Artificial Bee Colony and Genetic Programming algorithm is utilized for this purpose. Three IoT intrusion detection datasets, namely NSL-KDD, UNSW-NB15, and BoT-IoT, are used for the evaluation of the proposed approach. Performance analysis is conducted using various evaluation metrics such as accuracy, sensitivity, specificity, and False Positive Rate (FPR) are employed, while the cost of the IDS system is assessed based on computational time. The results are compared with existing methods in the literature, revealing that the IDS performance can be enhanced with fewer features, consequently reducing computational time, through the proposed method. This offers a better performance-cost trade-off for the IDS system..

Original languageEnglish
Title of host publicationProceedings - 2024 20th International Conference on Distributed Computing in Smart Systems and the Internet of Things, DCOSS-IoT 2024
Pages548-555
Number of pages8
ISBN (Electronic)9798350369441
DOIs
StatePublished - 2024
Event20th Annual International Conference on Distributed Computing in Smart Systems and the Internet of Things, DCOSS-IoT 2024 - Abu Dhabi, United Arab Emirates
Duration: Apr 29 2024May 1 2024

Publication series

NameProceedings - 2024 20th International Conference on Distributed Computing in Smart Systems and the Internet of Things, DCOSS-IoT 2024

Conference

Conference20th Annual International Conference on Distributed Computing in Smart Systems and the Internet of Things, DCOSS-IoT 2024
Country/TerritoryUnited Arab Emirates
CityAbu Dhabi
Period4/29/245/1/24

Bibliographical note

Publisher Copyright:
© 2024 IEEE.

Keywords

  • Binary Quantum-inspired Artificial Bee Colony Algorithm
  • Feature Construction
  • Feature Selection
  • Genetic Programming
  • Intrusion Detection Systems

ASJC Scopus subject areas

  • Modeling and Simulation
  • Artificial Intelligence
  • Computer Networks and Communications
  • Hardware and Architecture
  • Information Systems
  • Information Systems and Management
  • Control and Optimization

Fingerprint

Dive into the research topics of 'Enhancing IoT Security: A Novel Feature Engineering Approach for ML-Based Intrusion Detection Systems'. Together they form a unique fingerprint.

Cite this