Enhancing IoT Network Security: Unveiling the Power of Self-Supervised Learning against DDoS Attacks
Author:
Almaraz-Rivera Josue Genaro1ORCID, Cantoral-Ceballos Jose Antonio1ORCID, Botero Juan Felipe2ORCID
Affiliation:
1. Tecnologico de Monterrey, School of Engineering and Sciences, Monterrey 64849, Nuevo Leon, Mexico 2. Universidad de Antioquia, Electronics and Telecommunications Engineering Department, GITA-Lab, Medellin 050010, Antioquia, Colombia
Abstract
The Internet of Things (IoT), projected to exceed 30 billion active device connections globally by 2025, presents an expansive attack surface. The frequent collection and dissemination of confidential data on these devices exposes them to significant security risks, including user information theft and denial-of-service attacks. This paper introduces a smart, network-based Intrusion Detection System (IDS) designed to protect IoT networks from distributed denial-of-service attacks. Our methodology involves generating synthetic images from flow-level traffic data of the Bot-IoT and the LATAM-DDoS-IoT datasets and conducting experiments within both supervised and self-supervised learning paradigms. Self-supervised learning is identified in the state of the art as a promising solution to replace the need for massive amounts of manually labeled data, as well as providing robust generalization. Our results showcase that self-supervised learning surpassed supervised learning in terms of classification performance for certain tests. Specifically, it exceeded the F1 score of supervised learning for attack detection by 4.83% and by 14.61% in accuracy for the multiclass task of protocol classification. Drawing from extensive ablation studies presented in our research, we recommend an optimal training framework for upcoming contrastive learning experiments that emphasize visual representations in the cybersecurity realm. This training approach has enabled us to highlight the broader applicability of self-supervised learning, which, in some instances, outperformed supervised learning transferability by over 5% in precision and nearly 1% in F1 score.
Funder
Ibero-American Science and Technology Program for Development CYTED General System of Royalties from Colombia
Subject
Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry
Reference74 articles.
1. Sadhu, P.K., Yanambaka, V.P., and Abdelgawad, A. (2022). Internet of Things: Security and Solutions Survey. Sensors, 22. 2. A survey on Blockchain solutions in DDoS attacks mitigation: Techniques, open challenges and future directions;Chaganti;Comput. Commun.,2023 3. Internet of Things Forensics: A Review;Atlam;Internet Things,2020 4. Devi, D.H., Duraisamy, K., Armghan, A., Alsharari, M., Aliqab, K., Sorathiya, V., Das, S., and Rashid, N. (2023). 5G Technology in Healthcare and Wearable Devices: A Review. Sensors, 23. 5. Emerging DDoS attack detection and mitigation strategies in software-defined networks: Taxonomy, challenges and future directions;Valdovinos;J. Netw. Comput. Appl.,2021
|
|