Cite Article
Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning
Choose citation formatBibTeX
@article{IJASEIT14349, author = {Vian Adnan Ferman and Mohammed Ali Tawfeeq}, title = {Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning}, journal = {International Journal on Advanced Science, Engineering and Information Technology}, volume = {12}, number = {1}, year = {2022}, pages = {53--60}, keywords = {EAPOL protocol; gaussian naive bayes; IoT device fingerprint; network traffic analysis; Raspberry Pi.}, abstract = {The proliferation of Internet of Things (IoT) markets in the last decade introduces new challenges for network traffic analysis, and processing packet flows to identify IoT devices. This type of device suffers from scarcity, making them vulnerable to spoofing operations. In such circumstances, the device can be recognized by identifying its fingerprint. In this paper, a novel idea to elicit Device FingerPrint (DFP) is presented by extracting 30 features from the collected traffic packets of 19 IoT devices during setup and startup operations. Raspberry Pi 3 Model B+ is configured as an access point to collect and analyze the traffic of seven networked IoT devices using Wireshark Network Protocol Analyzer. Moreover, the rest of IoT devices traffic is taken from the publicly available network traffic dataset. Each IoT device's feature extraction process starts from getting Extensible Authentication Protocol over LAN (EAPOL) protocol, continuing with the other flowed protocols until the first session of Transmission Control Protocol (TCP) related to that device is closed. Depending on some produced variation of device traffic features, 20 fingerprints for each device are created. The probability theorem of Gaussian Naive Bayes (GNB) supervised machine learning is utilized to identify fingerprints of individual known devices and isolate the unknown ones. The performance evaluation for the proposed technique was calculated based on two measures, F1-score and identification accuracy. The average F1 score was around 0.99, while the overall identification accuracy rate was 98.35%.}, issn = {2088-5334}, publisher = {INSIGHT - Indonesian Society for Knowledge and Human Development}, url = {http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=14349}, doi = {10.18517/ijaseit.12.1.14349} }
EndNote
%A Adnan Ferman, Vian %A Ali Tawfeeq, Mohammed %D 2022 %T Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning %B 2022 %9 EAPOL protocol; gaussian naive bayes; IoT device fingerprint; network traffic analysis; Raspberry Pi. %! Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning %K EAPOL protocol; gaussian naive bayes; IoT device fingerprint; network traffic analysis; Raspberry Pi. %X The proliferation of Internet of Things (IoT) markets in the last decade introduces new challenges for network traffic analysis, and processing packet flows to identify IoT devices. This type of device suffers from scarcity, making them vulnerable to spoofing operations. In such circumstances, the device can be recognized by identifying its fingerprint. In this paper, a novel idea to elicit Device FingerPrint (DFP) is presented by extracting 30 features from the collected traffic packets of 19 IoT devices during setup and startup operations. Raspberry Pi 3 Model B+ is configured as an access point to collect and analyze the traffic of seven networked IoT devices using Wireshark Network Protocol Analyzer. Moreover, the rest of IoT devices traffic is taken from the publicly available network traffic dataset. Each IoT device's feature extraction process starts from getting Extensible Authentication Protocol over LAN (EAPOL) protocol, continuing with the other flowed protocols until the first session of Transmission Control Protocol (TCP) related to that device is closed. Depending on some produced variation of device traffic features, 20 fingerprints for each device are created. The probability theorem of Gaussian Naive Bayes (GNB) supervised machine learning is utilized to identify fingerprints of individual known devices and isolate the unknown ones. The performance evaluation for the proposed technique was calculated based on two measures, F1-score and identification accuracy. The average F1 score was around 0.99, while the overall identification accuracy rate was 98.35%. %U http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=14349 %R doi:10.18517/ijaseit.12.1.14349 %J International Journal on Advanced Science, Engineering and Information Technology %V 12 %N 1 %@ 2088-5334
IEEE
Vian Adnan Ferman and Mohammed Ali Tawfeeq,"Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning," International Journal on Advanced Science, Engineering and Information Technology, vol. 12, no. 1, pp. 53-60, 2022. [Online]. Available: http://dx.doi.org/10.18517/ijaseit.12.1.14349.
RefMan/ProCite (RIS)
TY - JOUR AU - Adnan Ferman, Vian AU - Ali Tawfeeq, Mohammed PY - 2022 TI - Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning JF - International Journal on Advanced Science, Engineering and Information Technology; Vol. 12 (2022) No. 1 Y2 - 2022 SP - 53 EP - 60 SN - 2088-5334 PB - INSIGHT - Indonesian Society for Knowledge and Human Development KW - EAPOL protocol; gaussian naive bayes; IoT device fingerprint; network traffic analysis; Raspberry Pi. N2 - The proliferation of Internet of Things (IoT) markets in the last decade introduces new challenges for network traffic analysis, and processing packet flows to identify IoT devices. This type of device suffers from scarcity, making them vulnerable to spoofing operations. In such circumstances, the device can be recognized by identifying its fingerprint. In this paper, a novel idea to elicit Device FingerPrint (DFP) is presented by extracting 30 features from the collected traffic packets of 19 IoT devices during setup and startup operations. Raspberry Pi 3 Model B+ is configured as an access point to collect and analyze the traffic of seven networked IoT devices using Wireshark Network Protocol Analyzer. Moreover, the rest of IoT devices traffic is taken from the publicly available network traffic dataset. Each IoT device's feature extraction process starts from getting Extensible Authentication Protocol over LAN (EAPOL) protocol, continuing with the other flowed protocols until the first session of Transmission Control Protocol (TCP) related to that device is closed. Depending on some produced variation of device traffic features, 20 fingerprints for each device are created. The probability theorem of Gaussian Naive Bayes (GNB) supervised machine learning is utilized to identify fingerprints of individual known devices and isolate the unknown ones. The performance evaluation for the proposed technique was calculated based on two measures, F1-score and identification accuracy. The average F1 score was around 0.99, while the overall identification accuracy rate was 98.35%. UR - http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=14349 DO - 10.18517/ijaseit.12.1.14349
RefWorks
RT Journal Article ID 14349 A1 Adnan Ferman, Vian A1 Ali Tawfeeq, Mohammed T1 Early Generation and Detection of Efficient IoT Device Fingerprints Using Machine Learning JF International Journal on Advanced Science, Engineering and Information Technology VO 12 IS 1 YR 2022 SP 53 OP 60 SN 2088-5334 PB INSIGHT - Indonesian Society for Knowledge and Human Development K1 EAPOL protocol; gaussian naive bayes; IoT device fingerprint; network traffic analysis; Raspberry Pi. AB The proliferation of Internet of Things (IoT) markets in the last decade introduces new challenges for network traffic analysis, and processing packet flows to identify IoT devices. This type of device suffers from scarcity, making them vulnerable to spoofing operations. In such circumstances, the device can be recognized by identifying its fingerprint. In this paper, a novel idea to elicit Device FingerPrint (DFP) is presented by extracting 30 features from the collected traffic packets of 19 IoT devices during setup and startup operations. Raspberry Pi 3 Model B+ is configured as an access point to collect and analyze the traffic of seven networked IoT devices using Wireshark Network Protocol Analyzer. Moreover, the rest of IoT devices traffic is taken from the publicly available network traffic dataset. Each IoT device's feature extraction process starts from getting Extensible Authentication Protocol over LAN (EAPOL) protocol, continuing with the other flowed protocols until the first session of Transmission Control Protocol (TCP) related to that device is closed. Depending on some produced variation of device traffic features, 20 fingerprints for each device are created. The probability theorem of Gaussian Naive Bayes (GNB) supervised machine learning is utilized to identify fingerprints of individual known devices and isolate the unknown ones. The performance evaluation for the proposed technique was calculated based on two measures, F1-score and identification accuracy. The average F1 score was around 0.99, while the overall identification accuracy rate was 98.35%. LK http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=14349 DO - 10.18517/ijaseit.12.1.14349