FLEAM: A Federated Learning Empowered Architecture to Mitigate DDoS in Industrial IoT

The distributed denial of service (DDoS) attack is detrimental to the industrial Internet of things (IIoT) as it triggers severe resource starvation on networked objects. Recent dynamics demonstrate that it is a highly profitable business for attackers using botnets. Current centralized mitigation solutions concentrate on detection and mitigation at a victim's side, paying inadequate attention to hacking costs and the collaboration of defenders. Thus, we propose the federated learning empowered mitigation architecture (FLEAM) to advocate joint defense, incurring a higher hacking expense. FLEAM combines FL and fog computing to reduce mitigation time and improve detection accuracy, enabling defenders to jointly combatting botnets. Our comprehensive evaluations showcase that the attacking expense incurred is 2.5 times higher, the mitigation delay is about 72% lower, and the accuracy is 47% greater on average than classic solutions.

[1]  Lingjuan Lyu,et al.  A Fast and Scalable Authentication Scheme in IoT for Smart Living , 2020, Future Gener. Comput. Syst..

[2]  Song Guo,et al.  Discriminating DDoS Attacks from Flash Crowds Using Flow Correlation Coefficient , 2012, IEEE Transactions on Parallel and Distributed Systems.

[3]  Rolando Trujillo-Rasua,et al.  Analysis of centrality measures under differential privacy models , 2021, Appl. Math. Comput..

[4]  J. K. Kalita,et al.  Botnet in DDoS Attacks: Trends and Challenges , 2015, IEEE Communications Surveys & Tutorials.

[5]  Jiong Jin,et al.  Virtual Fog: A Virtualization Enabled Fog Computing Framework for Internet of Things , 2018, IEEE Internet of Things Journal.

[6]  Jiong Jin,et al.  Too Expensive to Attack: A Joint Defense Framework to Mitigate Distributed Attacks for the Internet of Things Grid , 2021, ArXiv.

[7]  Peter Bodorik,et al.  DDoS Detection System: Utilizing Gradient Boosting Algorithm and Apache Spark , 2018, 2018 IEEE Canadian Conference on Electrical & Computer Engineering (CCECE).

[8]  Han Yu,et al.  Threats to Federated Learning: A Survey , 2020, ArXiv.

[9]  Zhaowen Lin,et al.  A Novel Real-Time DDoS Attack Detection Mechanism Based on MDRA Algorithm in Big Data , 2016 .

[10]  Kim-Kwang Raymond Choo,et al.  Distributed denial of service (DDoS) resilience in cloud: Review and conceptual cloud DDoS mitigation framework , 2016, J. Netw. Comput. Appl..

[11]  Massimiliano Rak,et al.  Stealthy Denial of Service Strategy in Cloud Computing , 2015, IEEE Transactions on Cloud Computing.

[12]  Mohammad Sayad Haghighi,et al.  Artificial Intelligence for Detection, Estimation, and Compensation of Malicious Attacks in Nonlinear Cyber-Physical Systems and Industrial IoT , 2020, IEEE Transactions on Industrial Informatics.

[13]  Hongji Yang,et al.  Unlocking the Power of OPNET Modeler , 2012 .

[14]  John Yearwood,et al.  Mutual Information Driven Federated Learning , 2021, IEEE Transactions on Parallel and Distributed Systems.

[15]  Kun Wang,et al.  An SDN-Enabled Pseudo-Honeypot Strategy for Distributed Denial of Service Attacks in Industrial Internet of Things , 2020, IEEE Transactions on Industrial Informatics.

[16]  Yue Zhao,et al.  Federated Learning with Non-IID Data , 2018, ArXiv.

[17]  B. B. Gupta,et al.  Multi attribute auction based incentivized solution against DDoS attacks , 2020, Comput. Secur..

[18]  Qinghe Du,et al.  Deep Learning-Based DDoS-Attack Detection for Cyber–Physical System Over 5G Network , 2021, IEEE Transactions on Industrial Informatics.

[19]  Marimuthu Palaniswami,et al.  EHOPES: Data-centered Fog platform for smart living , 2015, 2015 International Telecommunication Networks and Applications Conference (ITNAC).

[20]  Yoshua Bengio,et al.  Empirical Evaluation of Gated Recurrent Neural Networks on Sequence Modeling , 2014, ArXiv.

[21]  Jianhua Li,et al.  Latency estimation for fog-based internet of things , 2017, 2017 27th International Telecommunication Networks and Applications Conference (ITNAC).

[22]  Shilin Wen,et al.  Blockchain-Enabled Data Collection and Sharing for Industrial IoT With Deep Reinforcement Learning , 2019, IEEE Transactions on Industrial Informatics.

[23]  Rabindra K. Barik,et al.  A deep learning based intelligent framework to mitigate DDoS attack in fog environment , 2019, J. King Saud Univ. Comput. Inf. Sci..

[24]  Klaus Moessner,et al.  Real-Time Probabilistic Data Fusion for Large-Scale IoT Applications , 2018, IEEE Access.

[25]  Yuyang Zhou,et al.  Cost-effective moving target defense against DDoS attacks using trilateral game and multi-objective Markov decision processes , 2020, Comput. Secur..

[26]  Nour Moustafa,et al.  UNSW-NB15: a comprehensive data set for network intrusion detection systems (UNSW-NB15 network data set) , 2015, 2015 Military Communications and Information Systems Conference (MilCIS).

[27]  Song Guo,et al.  Can We Beat DDoS Attacks in Clouds? , 2014, IEEE Transactions on Parallel and Distributed Systems.

[28]  Wencong Su,et al.  A Machine-Learning-Based Cyber Attack Detection Model for Wireless Sensor Networks in Microgrids , 2021, IEEE Transactions on Industrial Informatics.

[29]  Daniel Rueckert,et al.  A generic framework for privacy preserving deep learning , 2018, ArXiv.

[30]  Blaise Agüera y Arcas,et al.  Communication-Efficient Learning of Deep Networks from Decentralized Data , 2016, AISTATS.

[31]  Brij B. Gupta,et al.  Distributed denial of service (DDoS) attack mitigation in software defined network (SDN)-based cloud computing environment , 2018, Journal of Ambient Intelligence and Humanized Computing.

[32]  Brij B. Gupta,et al.  A QoS Ensuring Two-Layered Multi-Attribute Auction Mechanism to Mitigate DDoS Attack , 2020, Mobile Networks and Applications.

[33]  Brij B. Gupta,et al.  Security, privacy & efficiency of sustainable Cloud Computing for Big Data & IoT , 2018, Sustain. Comput. Informatics Syst..

[34]  Georgios Kambourakis,et al.  The Mirai botnet and the IoT Zombie Armies , 2017, MILCOM 2017 - 2017 IEEE Military Communications Conference (MILCOM).