Device Identification in IoT Networks using Network Trace Fingerprinting

With the rapid growth in the number of IoT (Internet of Things) devices becoming part of the network, the management and monitoring of these connected devices is becoming increasingly difficult. IoT networks handle the data produced by the physical world, and with the increase in the number of IoT devices, the exploitation of these devices has also increased. Because these devices are constrained in terms of power and computational capabilities, they cannot handle complex cryptographic schemes. Most devices are manufactured on a mass scale with different deployment options and vendors, so they can be easily tampered with or compromised,even if device authentication is part of their operation, there is still a high chance of intrusion in the IoT ecosystem and these devices are prone to attacks.The data collected are critical or personal and require strict security and privacy. Therefore, the security of the IoT devices is crucial. Devices are typically authenticated once (typically when they connect to the network for the first time) and are expected to continuously relay data. Even though they are required to periodically re-authenticate, the device constraints do not facilitate this, thereby resulting in a security concern if compromised. The proposed approach is to secure IoT devices by keeping track of devices connected to the network. Hence, a device fingerprint is created from a network trace that identifies the different types of devices connected to the network. Five additional features are included in the dataset used in [1]. The new device fingerprint contributed to higher accuracy. The labeled data are fed into a machine learning model for the classification of the types of devices, where the accuracy increased to 84.5%. and F1-score of 83.3%.

[1]  Budi Arief,et al.  Position paper: A systematic framework for categorising IoT device fingerprinting mechanisms , 2020, AIChallengeIoT@SenSys.

[2]  Elizabeth S. Bentley,et al.  Z-IoT: Passive Device-class Fingerprinting of ZigBee and Z-Wave IoT Devices , 2020, ICC 2020 - 2020 IEEE International Conference on Communications (ICC).

[3]  Ali Hameed,et al.  Security Issues in IoT: A Survey , 2019, 2019 International Conference on Innovation and Intelligence for Informatics, Computing, and Technologies (3ICT).

[4]  Quan Z. Sheng,et al.  IoT Device Identification via Network-Flow Based Fingerprinting and Learning , 2019, 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE).

[5]  Biplab Sikdar,et al.  A Survey on IoT Security: Application Areas, Security Threats, and Solution Architectures , 2019, IEEE Access.

[6]  Mehmet Hadi Gunes,et al.  Automated IoT Device Identification using Network Traffic , 2019, ICC 2019 - 2019 IEEE International Conference on Communications (ICC).

[7]  Ahmed Serhrouchni,et al.  A Survey of Internet of Things (IoT) Authentication Schemes † , 2019, Sensors.

[8]  Indrajit Ray,et al.  Behavioral Fingerprinting of IoT Devices , 2018, ASHES@CCS.

[9]  Ahmad-Reza Sadeghi,et al.  IoT SENTINEL: Automated Device-Type Identification for Security Enforcement in IoT , 2016, 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS).

[10]  Arun Cyril Jose,et al.  Improving Home Automation Security; Integrating Device Fingerprinting Into Smart Home , 2016, IEEE Access.

[11]  Kevin Barraclough,et al.  I and i , 2001, BMJ : British Medical Journal.