Stacked recurrent neural network for botnet detection in smart homes

Abstract Internet of Things (IoT) devices in Smart Home Network (SHN) are highly vulnerable to complex botnet attacks. In this paper, we investigate the effectiveness of Recurrent Neural Network (RNN) to correctly classify network traffic samples in the minority classes of highly imbalanced network traffic data. Multiple layers of RNN are stacked to learn the hierarchical representations of highly imbalanced network traffic data with different levels of abstraction. We evaluate the performance of Stacked RNN (SRNN) model with Bot-IoT dataset. Results show that SRNN outperformed RNN in all classification scenarios. Specifically, SRNN model learned the discriminating features of highly imbalanced network traffic samples in the training set with better representations than RNN model. Also, SRNN model is more robust and it demonstrated better capability to effectively handle over-fitting problem than RNN model. Furthermore, SRNN model achieved better generalization ability in detecting network traffic samples of the minority classes.

[1]  M. Omair Shafiq,et al.  Analyzing Adversarial Attacks against Deep Learning for Intrusion Detection in IoT Networks , 2019, 2019 IEEE Global Communications Conference (GLOBECOM).

[2]  Youlong Yang,et al.  An improved fuzzy classifier for imbalanced data , 2017, J. Intell. Fuzzy Syst..

[3]  Nour Moustafa,et al.  Forensics and Deep Learning Mechanisms for Botnets in Internet of Things: A Survey of Challenges and Solutions , 2019, IEEE Access.

[4]  Benjamin Turnbull,et al.  A Deep Blockchain Framework-Enabled Collaborative Intrusion Detection for Protecting IoT and Cloud Networks , 2021, IEEE Internet of Things Journal.

[5]  Abdullah Al-Barakati,et al.  DeepDCA: Novel Network-Based Detection of IoT Attacks Using Artificial Immune System , 2020, Applied Sciences.

[6]  H. Vincent Poor,et al.  BlackIoT: IoT Botnet of High Wattage Devices Can Disrupt the Power Grid , 2018, USENIX Security Symposium.

[7]  Siddharth Krishna Kumar,et al.  On weight initialization in deep neural networks , 2017, ArXiv.

[8]  Elena Sitnikova,et al.  Towards the Development of Realistic Botnet Dataset in the Internet of Things for Network Forensic Analytics: Bot-IoT Dataset , 2018, Future Gener. Comput. Syst..

[9]  Jimmy Ba,et al.  Adam: A Method for Stochastic Optimization , 2014, ICLR.

[10]  Joachim Fabini,et al.  Botnet Communication Patterns , 2017, IEEE Communications Surveys & Tutorials.

[11]  Elena Sitnikova,et al.  A new network forensic framework based on deep learning for Internet of Things networks: A particle deep framework , 2020, Future Gener. Comput. Syst..

[12]  Joarder Kamruzzaman,et al.  A novel Ensemble of Hybrid Intrusion Detection System for Detecting Internet of Things Attacks , 2019, Electronics.

[13]  Georgios Kambourakis,et al.  DDoS in the IoT: Mirai and Other Botnets , 2017, Computer.

[14]  Qiong Chen,et al.  Deep reinforcement learning for imbalanced classification , 2019, Applied Intelligence.

[15]  Paul J. Werbos,et al.  Backpropagation Through Time: What It Does and How to Do It , 1990, Proc. IEEE.

[16]  Mohamed Amine Ferrag,et al.  Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study , 2020, J. Inf. Secur. Appl..

[17]  Chung-Horng Lung,et al.  A Comprehensive Analysis of Accuracies of Machine Learning Algorithms for Network Intrusion Detection , 2019, MLN.

[18]  Antonio Robles-Kelly,et al.  Deep Learning-Based Intrusion Detection for IoT Networks , 2019, 2019 IEEE 24th Pacific Rim International Symposium on Dependable Computing (PRDC).

[19]  Lee Friedman,et al.  Assessment of the Effectiveness of Seven Biometric Feature Normalization Techniques , 2019, IEEE Transactions on Information Forensics and Security.

[20]  Mohamed Amine Ferrag,et al.  DeepCoin: A Novel Deep Learning and Blockchain-Based Energy Exchange Framework for Smart Grids , 2020, IEEE Transactions on Engineering Management.

[21]  Syed Ali Khayam,et al.  A Taxonomy of Botnet Behavior, Detection, and Defense , 2014, IEEE Communications Surveys & Tutorials.

[22]  Mehdi Asadi,et al.  Detecting botnet by using particle swarm optimization algorithm based on voting system , 2020, Future Gener. Comput. Syst..

[23]  Amalia Luque,et al.  The impact of class imbalance in classification performance metrics based on the binary confusion matrix , 2019, Pattern Recognit..

[24]  Xiaojiang Du,et al.  IoT malicious traffic identification using wrapper-based feature selection mechanisms , 2020, Comput. Secur..

[25]  Xiaojiang Du,et al.  Selection of effective machine learning algorithm and Bot-IoT attacks traffic identification for internet of things in smart city , 2020, Future Gener. Comput. Syst..

[26]  Michael C. Mozer,et al.  A Focused Backpropagation Algorithm for Temporal Pattern Recognition , 1989, Complex Syst..

[27]  Ahmed Ahmim,et al.  RDTIDS: Rules and Decision Tree-Based Intrusion Detection System for Internet-of-Things Networks , 2020, Future Internet.

[28]  Elisa Bertino,et al.  Botnets and Internet of Things Security , 2017, Computer.

[29]  Bamidele Adebisi,et al.  Hybrid Deep Learning for Botnet Attack Detection in the Internet-of-Things Networks , 2021, IEEE Internet of Things Journal.

[30]  Saleh Soltan,et al.  Protecting the Grid Against MAD Attacks , 2020, IEEE Transactions on Network Science and Engineering.

[31]  Paulus Insap Santosa,et al.  Towards a Lightweight Detection System for Cyber Attacks in the IoT Environment Using Corresponding Features , 2020, Electronics.

[32]  Benjamin Turnbull,et al.  Mixture Localization-Based Outliers Models for securing Data Migration in Cloud Centers , 2019, IEEE Access.

[33]  Chun Gui,et al.  Analysis of imbalanced data set problem: The case of churn prediction for telecommunication , 2017, Artif. Intell. Res..

[34]  Narayanavadivoo Gopinathan Bhuvaneswari Amma,et al.  Anomaly detection framework for Internet of things traffic using vector convolutional deep learning approach in fog environment , 2020, Future Gener. Comput. Syst..

[35]  María José del Jesús,et al.  A study of the behaviour of linguistic fuzzy rule based classification systems in the framework of imbalanced data-sets , 2008, Fuzzy Sets Syst..