基于实用拜占庭容错的物联网入侵检测方法

doi:10.11772/j.issn.1001-9081.2018102096

计算机应用 ›› 2019, Vol. 39 ›› Issue (6): 1742-1746.DOI: 10.11772/j.issn.1001-9081.2018102096

基于实用拜占庭容错的物联网入侵检测方法

潘建国, 李豪

上海师范大学信息与机电工程学院, 上海 200234

收稿日期:2018-10-16 修回日期:2018-12-13 发布日期:2019-06-17 出版日期:2019-06-10
通讯作者: 李豪
作者简介:潘建国(1977-),男,江西上饶人,副教授,博士,主要研究方向:智能信息处理、嵌入式开发;李豪(1994-),男,山东泗水人,硕士研究生,主要研究方向:智能信息处理、嵌入式开发。
基金资助:
上海市自然科学基金资助项目（18ZR1428300）。

Intrusion detection approach for IoT based on practical Byzantine fault tolerance

PAN Jianguo, LI Hao

College of Information, Mechanical and Electrical Engineering, Shanghai Normal University, Shanghai 200234, China

Received:2018-10-16 Revised:2018-12-13 Online:2019-06-17 Published:2019-06-10
Supported by:
This work is partially supported by the Shanghai Natural Science Foundation (18ZR1428300).

摘要/Abstract

摘要： 物联网入侵的检测率虽高，但面临节点能力消耗过大的问题，为此提出一种基于共识的实用拜占庭容错（PBFT）算法的入侵检测方法。首先，使用支持向量机（SVM）进行预训练得到入侵检测判定规则，并将训练规则应用于物联网中的每个节点；然后，选举出部分节点对网络中其他节点进行主动入侵检测，同时将自身的检测结果向其他节点公布；最后，每个节点依据PBFT算法判断其他节点的状态，使检测结果在系统内达到一致性。在NSL-KDD数据集上使用TinyOS进行仿真的实验结果表明，所提方法与集成入侵检测系统（ⅡDS）和双重降维双重检测（TDTC）方法相比，能量消耗平均降低12.2%和7.6%，能够有效地降低物联网的能量消耗。

关键词: 物联网, 实用拜占庭容错, 入侵检测, 低能耗, 支持向量机

Abstract: Current Internet of Things (IoT) networks have high detection rate of known types of attacks but the network node energy consumption is high. Aiming at this fact, an intrusion detection approach based on Practical Byzantine Fault Tolerance (PBFT) algorithm was proposed. Firstly, Support Vector Machine (SVM) was used for pre-training to obtain the intrusion detection decision rule, and the trained rule was applied to each node in IoT. Then, some nodes were voted to perform the active intrusion detection on other nodes in the network, while announce their detection results to other nodes. Finally, each node judged the state of other nodes according to PBFT algorithm, making the detection results reach consistency in the system. The simulation results on NSL-KDD dataset by TinyOS show that the proposed approach reduces the energy consumption by 12.2% and 7.6% averagely and respectively compared with Integrated Intrusion Detection System (ⅡDS) and Two-layer Dimension reduction and Two-tier Classification (TDTC) approach, effectively reducing the energy consumption of IoT.

Key words: Internet of Things (IoT), Practical Byzantine Fault Tolerance (PBFT), intrusion detection, low energy consumption, Support Vector Machine (SVM)

中图分类号:

TP393.08

潘建国, 李豪. 基于实用拜占庭容错的物联网入侵检测方法[J]. 计算机应用, 2019, 39(6): 1742-1746.

PAN Jianguo, LI Hao. Intrusion detection approach for IoT based on practical Byzantine fault tolerance[J]. Journal of Computer Applications, 2019, 39(6): 1742-1746.

参考文献

[1] 刘海燕,张钰,毕建权,等.基于分布式及协同式网络入侵检测技术综述[J].计算机工程与应用,2018,54(8):1-6,20.(LIU H Y, ZHANG Y, BI J Q, et al. Review of technology based on distributed and collaborative network intrusion detection[J]. Computer Engineering and Applications, 2018, 54(8):1-6, 20.)
[2] JOKAR P, LEUNG V C M. Intrusion detection and prevention for ZigBee-based home area networks in smart grids[J]. IEEE Transactions on Smart Grid, 2016,9(3):1800-1811.
[3] SEDJELMACI H, SENOUCI S M. Efficient and lightweight intrusion detection based on nodes' behaviors in wireless sensor networks[C]//Proceedings of the IEEE 2013 Global Information Infrastructure Symposium. Piscataway, NJ:IEEE, 2013:1-6.
[4] ARRINGTON B, BARNETT L E, RUFUS R, et al. Behavioral Modeling Intrusion Detection System (BMIDS) using Internet of Things (IoT) behavior-based anomaly detection via immunity-inspired algorithms[C]//Proceedings of the IEEE 201625th International Conference on Computer Communication and Networks. Piscataway, NJ:IEEE, 2016:1-6.
[5] WANG S S, YAN K Q, WANG S C, et al. An integrated intrusion detection system for cluster-based wireless sensor networks[J]. Expert Systems with Applications, 2011, 38(12):15234-15243.
[6] LOO C E, NG M Y, LECKIE C. Intrusion detection for routing attacks in sensor networks[J]. International Journal of Distributed Sensor Networks, 2006, 2(4):313-332.
[7] PAJOUH H H, JAVIDAN R, KHAYMAI R, et al. A two-layer dimension reduction and two-tier classification model for anomaly-based intrusion detection in IoT backbone networks[EB/OL].[2018-08-18]. https://core.ac.uk/download/pdf/74220285.pdf.
[8] SEDJELMACI H, SENOUCI S M, TALEB T. An accurate security game for low-resource IoT devices[J]. IEEE Transactions on Vehicular Technology, 2017, 66(10):9381-9393.
[9] 刘雅菲,刘宴兵.WSN中一种新的基于重复博弈的入侵检测研究[J].计算机应用研究,2013,30(5):1540-1543.(LIU Y F, LIU Y B. Novel research of intrusion detection based on repeated game in wireless sensor network[J]. Application Research of Computers, 2013, 30(5):1540-1543.)
[10] LIN Y-D, LAI Y-C, HO C-Y, et al. Creditability-based weighted voting for reducing false positives and negatives in intrusion detection[J]. Computers & Security, 2013, 39(Part B):460-474.
[11] COWLING J, MYERS D, LISKOV B, et al. HQ replication:a hybrid quorum protocol for byzantine fault tolerance[C]//Proceedings of the 20067th USENIX Symposium on Operating Systems Design & Implementation. Berkeley, CA:USENIX Association, 2006:177-190.
[12] 范捷,易乐天,舒继武.拜占庭系统技术研究综述[J].软件学报,2013,24(6):1346-1360.(FAN J, YI L T, SHU J W. Research on the technologies of Byzantine system[J]. Journal of Software, 2013, 24(6):1346-1360.)
[13] DHANABAL L, SHANTHARAJAH D S. A study on NSL-KDD dataset for intrusion detection system based on classification algorithms[J]. International Journal of Advanced Research in Computer and Communication Engineering, 2015, 4(6):446-452.
[14] 柳亚男,王箭,张楠楠.层次型传感器网络簇内密钥协商方法[J].系统工程与电子技术,2011,33(7):1633-1637.(LIU Y N, WANG J, ZHANG N N. Intra-cluster key agreement in hierarchical sensor networks[J]. Systems Engineering and Electronics, 2011, 33(7):1633-1637.)
[15] LEVIS P, LEE N, WELSH M, et al. TOSSIM:accurate and scalable simulation of entire TinyOS applications[C]//SenSys 2003:Proceedings of the 1st International Conference on Embedded Networked Sensor Systems. New York:ACM, 2003:126-137.

基于实用拜占庭容错的物联网入侵检测方法

Intrusion detection approach for IoT based on practical Byzantine fault tolerance

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	张师鹏, 李永忠, 杜祥通. 基于半监督学习和三支决策的入侵检测模型[J]. 计算机应用, 2021, 41(9): 2602-2608.
[2]	王月, 江逸茗, 兰巨龙. 基于改进三元组网络和K近邻算法的入侵检测[J]. 计算机应用, 2021, 41(7): 1996-2002.
[3]	杨龙海, 王学渊, 蒋和松. 改进SM2签名方法的区块链数字签名方案[J]. 计算机应用, 2021, 41(7): 1983-1988.
[4]	王垚, 孙国梓. 基于聚类和实例硬度的入侵检测过采样方法[J]. 计算机应用, 2021, 41(6): 1709-1714.
[5]	张全龙, 王怀彬. 基于膨胀卷积和门控循环单元组合的入侵检测模型[J]. 计算机应用, 2021, 41(5): 1372-1377.
[6]	贾鹤鸣, 姜子超, 李瑶, 孙康健. 基于改进斑点鬣狗优化算法的同步优化特征选择[J]. 计算机应用, 2021, 41(5): 1290-1298.
[7]	任晓奎, 刘鹏飞, 陶志勇, 刘影, 白立春. 基于单快拍信号到达角估计算法的室内入侵检测[J]. 计算机应用, 2021, 41(4): 1153-1159.
[8]	田志宏, 赵金东. 面向物联网的区块链共识机制综述[J]. 计算机应用, 2021, 41(4): 917-929.
[9]	包玉龙, 朱雪阳, 张文辉, 孙鹏飞, 赵颖琪. 物联网应用中访问控制智能合约的形式化验证[J]. 计算机应用, 2021, 41(4): 930-938.
[10]	张凌哲, 黄向东, 乔嘉林, 勾王敏浩, 王建民. 面向时序数据的两阶段日志结构合并树文件合并框架[J]. 计算机应用, 2021, 41(3): 618-622.
[11]	刘宇, 朱朝阳, 李金泽, 劳源基, 覃团发. 检测型的联盟区块链共识算法d-PBFT[J]. 计算机应用, 2021, 41(3): 756-762.
[12]	李秀艳, 刘明曦, 史闻博, 董国芳. 面向资源受限用户的高效动态数据审计方案[J]. 计算机应用, 2021, 41(2): 422-432.
[13]	袁芊芊, 邓洪敏, 王晓航. 基于超像素快速模糊C均值聚类与支持向量机的柑橘病虫害区域分割[J]. 计算机应用, 2021, 41(2): 563-570.
[14]	李凯, 李洁. 基于pinball损失的结构模糊多分类支持向量机算法[J]. 《计算机应用》唯一官方网站, 2021, 41(11): 3104-3112.
[15]	陆荣秀, 陈明明, 杨辉, 朱建勇. 基于溶液图像时序特征的元素组分含量动态监测系统[J]. 计算机应用, 2021, 41(10): 3075-3081.