Conference paper Embargoed Access
Ioannou Christiana; Vasos Vasiliou
Machine learning models have long be proposed to detect the presence of unauthorized activity within computer networks. They are used as anomaly detection techniques to detect abnormal behaviors within the network. We propose to use Support Vector Machine (SVM) learning anomaly detection model to detect abnormalities within the Internet of Things. SVM creates its normal profile hyperplane based on both benign and malicious local sensor activity. An important aspect of our work is the use of actual IoT network traffic with specific network layer attacks implemented by us. This is in contrast to other works creating supervised learning models, with generic datasets. The proposed detection model achieves up to 100% accuracy when evaluated with unknown data taken from the same network topology as it was trained and 81% accuracy when operating in an unknown topology.
Files are currently under embargo but will be publicly accessible after October 31, 2021.