skip to main content
Idioma:

Evaluating Federated Learning for intrusion detection in Internet of Things: Review and challenges

Campos, Enrique Mármol ; Saura, Pablo Fernández ; González-Vidal, Aurora ; Hernández-Ramos, José L. ; Bernabé, Jorge Bernal ; Baldini, Gianmarco ; Skarmeta, Antonio

Computer networks (Amsterdam, Netherlands : 1999), 2022-02, Vol.203, p.108661, Article 108661 [Periódico revisado por pares]

Amsterdam: Elsevier B.V

Texto completo disponível

Citações Citado por
  • Título:
    Evaluating Federated Learning for intrusion detection in Internet of Things: Review and challenges
  • Autor: Campos, Enrique Mármol ; Saura, Pablo Fernández ; González-Vidal, Aurora ; Hernández-Ramos, José L. ; Bernabé, Jorge Bernal ; Baldini, Gianmarco ; Skarmeta, Antonio
  • Assuntos: Computer security ; Data centers ; Electronic devices ; Evaluation ; Federated Learning ; Internet of Things ; Intrusion ; Intrusion detection systems ; Machine learning ; Transportation systems
  • É parte de: Computer networks (Amsterdam, Netherlands : 1999), 2022-02, Vol.203, p.108661, Article 108661
  • Descrição: The application of Machine Learning (ML) techniques to the well-known intrusion detection systems (IDS) is key to cope with increasingly sophisticated cybersecurity attacks through an effective and efficient detection process. In the context of the Internet of Things (IoT), most ML-enabled IDS approaches use centralized approaches where IoT devices share their data with data centers for further analysis. To mitigate privacy concerns associated with centralized approaches, in recent years the use of Federated Learning (FL) has attracted a significant interest in different sectors, including healthcare and transport systems. However, the development of FL-enabled IDS for IoT is in its infancy, and still requires research efforts from various areas, in order to identify the main challenges for the deployment in real-world scenarios. In this direction, our work evaluates a FL-enabled IDS approach based on a multiclass classifier considering different data distributions for the detection of different attacks in an IoT scenario. In particular, we use three different settings that are obtained by partitioning the recent ToN_IoT dataset according to IoT devices’ IP address and types of attack. Furthermore, we evaluate the impact of different aggregation functions according to such setting by using the recent IBMFL framework as FL implementation. Additionally, we identify a set of challenges and future directions based on the existing literature and the analysis of our evaluation results. •Analysis of existing of FL-enabled IDS approaches for IoT based on a set of identified criteria.•Partitioning of the recent ToN_IoT dataset to evaluate the impact of data distribution in a multi-class classifier for detecting specific types of attacks.•Quantitative analysis of the impact of non-iid data considering different aggregation methods and training rounds by using the recent IBMFL implementation.•Definition of the main challenges and future trends to be considered in the coming future for the development of FL-enabled IDS for IoT scenarios.
  • Editor: Amsterdam: Elsevier B.V
  • Idioma: Inglês
Voltar para lista de resultados

  • Realização: ABCD-USP USP   Logos de Redes Sociais: Freepik

Buscando em bases de dados remotas. Favor aguardar.