Affiliation:
1. Department of Computer Science, College of Science and Humanities Al Dawadmi, Shaqra University, Dawadmi City 11911, Saudi Arabia
2. Informatics Department, Electronics Research Institute, Cairo 12622, Egypt
Abstract
The Message Queuing Telemetry Transport (MQTT) protocol stands out as one of the foremost and widely recognized messaging protocols in the field. It is often used to transfer and manage data between devices and is extensively employed for applications ranging from smart homes and industrial automation to healthcare and transportation systems. However, it lacks built-in security features, thereby making it vulnerable to many types of attacks such as man-in-the-middle (MitM), buffer overflow, pre-shared key, brute force authentication, malformed data, distributed denial-of-service (DDoS) attacks, and MQTT publish flood attacks. Traditional methods for detecting MQTT attacks, such as deep neural networks (DNNs), k-nearest neighbor (KNN), linear discriminant analysis (LDA), and fuzzy logic, may exist. The increasing prevalence of device connectivity, sensor usage, and environmental scalability become the most challenging aspects that novel detection approaches need to address. This paper presents a new solution that leverages an H2O-based distributed machine learning (ML) framework to improve the security of the MQTT protocol in networks, particularly in IoT environments. The proposed approach leverages the strengths of the H2O algorithm and architecture to enable real-time monitoring and distributed detection and classification of anomalous behavior (deviations from expected activity patterns). By harnessing H2O’s algorithms, the identification and timely mitigation of potential security threats are achieved. Various H2O algorithms, including random forests, generalized linear models (GLMs), gradient boosting machine (GBM), XGBoost, and the deep learning (DL) algorithm, have been assessed to determine the most reliable algorithm in terms of detection performance. This study encompasses the development of the proposed algorithm, including implementation details and evaluation results. To assess the proposed model, various evaluation metrics such as mean squared error (MSE), root-mean-square error (RMSE), mean per class error (MCE), and log loss are employed. The results obtained indicate that the H2OXGBoost algorithm outperforms other H2O models in terms of accuracy. This research contributes to the advancement of secure IoT networks and offers a practical approach to enhancing the security of MQTT communication channels through distributed detection and classification techniques.
Reference46 articles.
1. Taherdoost, H. (2023). Security and Internet of Things: Benefits, Challenges, and Future Perspectives. Electronics, 12.
2. Iqbal, M., Khaliq, K., Al-Dmour, N., Hamid, K., Aqueel, M., and Ali, N. (2023, January 7–8). Internet of Things (IoT) in smart cities: A statistical survey. Proceedings of the International Conference on Business Analytics for Technology and Security (ICBATS), Dubai, United Arab Emirates.
3. The application of Internet of things in healthcare: A systematic literature review and classification;Hossein;Univ. Access Info. Soc.,2019
4. MQTT vulnerabilities, attack vectors and solutions in the Internet of things (IoT);Ahmed;IETE J. Res.,2021
5. Investigating messaging protocols for the Internet of things (IoT);Eyhab;IEEE Access,2020
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献