首页> 外文期刊>Future generation computer systems >Designing collaborative blockchained signature-based intrusion detection in IoT environments
【24h】

Designing collaborative blockchained signature-based intrusion detection in IoT environments

机译:在物联网环境中设计协作式基于区块链签名的入侵检测

获取原文
获取原文并翻译 | 示例
       

摘要

With the rapid development of Internet-of-Things (IoT), there is an increasing demand for securing the IoT environments. For such purpose, intrusion detection systems (IDSs) are one of the most important security mechanisms, which can help defend computer networks including IoT against various threats. In order to achieve better detection performance, collaborative intrusion detection systems or networks (CIDSs or CIDNs) are often adopted in a practical scenario, allowing a set of IDS nodes to exchange required information with each other, e.g., alarms, signatures. However, due to the distributed nature, such kind of collaborative network is vulnerable to insider attacks, i.e., malicious nodes can generate untruthful signatures and share to normal peers. This may cause intruders to be undetected and greatly degrade the effectiveness of IDSs. With the advent of blockchain technology, it provides a way to verify shared signatures (rules). In this work, our motivation is to develop CBSigIDS, a generic framework of collaborative blockchained signature-based IDSs, which can incrementally build and update a trusted signature database in a collaborative IoT environment. CBSigIDS can provide a verifiable manner in distributed architectures without the need of a trusted intermediary. In the evaluation, our results demonstrate that CBSigIDS can enhance the robustness and effectiveness of signature-based IDSs under adversarial scenarios. (C) 2019 Elsevier B.V. All rights reserved.
机译:随着物联网(IoT)的快速发展,对保护IoT环境的需求日益增长。为此,入侵检测系统(IDS)是最重要的安全机制之一,可以帮助防御包括IoT在内的计算机网络遭受各种威胁。为了获得更好的检测性能,在实际情况下通常采用协作式入侵检测系统或网络(CIDS或CIDN),以允许一组IDS节点彼此交换所需的信息,例如警报,签名。但是,由于分布式特性,这种协作网络容易受到内部攻击,即恶意节点可能生成不真实的签名并与普通对等共享。这可能会导致入侵者未被发现并大大降低了IDS的有效性。随着区块链技术的出现,它提供了一种验证共享签名(规则)的方法。在这项工作中,我们的动机是开发CBSigIDS,这是基于协作式区块链签名的IDS的通用框架,它可以在协作式IoT环境中逐步构建和更新受信任的签名数据库。 CBSigIDS可以在分布式体系结构中提供可验证的方式,而无需受信任的中介。在评估中,我们的结果表明CBSigIDS可以增强在对抗情况下基于签名的IDS的鲁棒性和有效性。 (C)2019 Elsevier B.V.保留所有权利。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号