BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems

BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems

The identification of vulnerabilities in a mission-critical system is one of the challenges faced by a cyber-physical system (CPS). The incorporation of embedded Internet of Things (IoT) devices makes it tedious to identify vulnerability and difficult to control the service-interruptions and manage...

Full description

Bibliographic Details
Main Authors: Vishal Sharma, Ilsun You, Kangbin Yim, Ing-Ray Chen, Jin-Hee Cho
Format: Article
Language:English
Published: IEEE 2019-01-01
Series:IEEE Access
Subjects:
Behavior rules
cyber-physical systems
IoT
specification-based intrusion detection
zero-day attacks
Online Access:https://ieeexplore.ieee.org/document/8715740/
id doaj-5053b189734845889c04a96b55cecd6d
record_format Article
spelling doaj-5053b189734845889c04a96b55cecd6d2021-04-05T17:20:08ZengIEEEIEEE Access2169-35362019-01-01711855611858010.1109/ACCESS.2019.29171358715740BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical SystemsVishal Sharma0https://orcid.org/0000-0001-7470-6506Ilsun You1https://orcid.org/0000-0002-0604-3445Kangbin Yim2Ing-Ray Chen3Jin-Hee Cho4Department of Information Security Engineering, Soonchunhyang University, Asan, South KoreaDepartment of Information Security Engineering, Soonchunhyang University, Asan, South KoreaDepartment of Information Security Engineering, Soonchunhyang University, Asan, South KoreaDepartment of Computer Science, Virginia Tech, Blacksburg, VA, USADepartment of Computer Science, Virginia Tech, Blacksburg, VA, USAThe identification of vulnerabilities in a mission-critical system is one of the challenges faced by a cyber-physical system (CPS). The incorporation of embedded Internet of Things (IoT) devices makes it tedious to identify vulnerability and difficult to control the service-interruptions and manage the operations losses. Rule-based mechanisms have been considered as a solution in the past. However, rule-based solutions operate on the goodwill of the generated rules and perform assumption-based detection. Such a solution often is far from the actual realization of the IoT runtime performance and can be fooled by zero-day attacks. Thus, this paper takes this issue as motivation and proposes better lightweight behavior rule specification-based misbehavior detection for the IoT-embedded cyber-physical systems (BRIoT). The key concept of our approach is to model a system with which misbehavior of an IoT device manifested as a result of attacks exploiting the vulnerability exposed may be detected through automatic model checking and formal verification, regardless of whether the attack is known or unknown. Automatic model checking and formal verification are achieved through a 2-layer Fuzzy-based hierarchical context-aware aspect-oriented Petri net (HCAPN) model, while effective misbehavior detection to avoid false alarms is achieved through a Barycentric-coordinated-based center of mass calculation method. The proposed approach is verified by an unmanned aerial vehicle (UAV) embedded in a UAV system. The feasibility of the proposed model is demonstrated with high reliability, low operational cost, low false-positives, low false-negatives, and high true positives in comparison with existing rule-based solutions.https://ieeexplore.ieee.org/document/8715740/Behavior rulescyber-physical systemsIoTspecification-based intrusion detectionzero-day attacks
collection DOAJ
language English
format Article
sources DOAJ
author Vishal Sharma
Ilsun You
Kangbin Yim
Ing-Ray Chen
Jin-Hee Cho
spellingShingle Vishal Sharma
Ilsun You
Kangbin Yim
Ing-Ray Chen
Jin-Hee Cho
BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems
IEEE Access
Behavior rules
cyber-physical systems
IoT
specification-based intrusion detection
zero-day attacks
author_facet Vishal Sharma
Ilsun You
Kangbin Yim
Ing-Ray Chen
Jin-Hee Cho
author_sort Vishal Sharma
title BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems
title_short BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems
title_full BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems
title_fullStr BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems
title_full_unstemmed BRIoT: Behavior Rule Specification-Based Misbehavior Detection for IoT-Embedded Cyber-Physical Systems
title_sort briot: behavior rule specification-based misbehavior detection for iot-embedded cyber-physical systems
publisher IEEE
series IEEE Access
issn 2169-3536
publishDate 2019-01-01
description The identification of vulnerabilities in a mission-critical system is one of the challenges faced by a cyber-physical system (CPS). The incorporation of embedded Internet of Things (IoT) devices makes it tedious to identify vulnerability and difficult to control the service-interruptions and manage the operations losses. Rule-based mechanisms have been considered as a solution in the past. However, rule-based solutions operate on the goodwill of the generated rules and perform assumption-based detection. Such a solution often is far from the actual realization of the IoT runtime performance and can be fooled by zero-day attacks. Thus, this paper takes this issue as motivation and proposes better lightweight behavior rule specification-based misbehavior detection for the IoT-embedded cyber-physical systems (BRIoT). The key concept of our approach is to model a system with which misbehavior of an IoT device manifested as a result of attacks exploiting the vulnerability exposed may be detected through automatic model checking and formal verification, regardless of whether the attack is known or unknown. Automatic model checking and formal verification are achieved through a 2-layer Fuzzy-based hierarchical context-aware aspect-oriented Petri net (HCAPN) model, while effective misbehavior detection to avoid false alarms is achieved through a Barycentric-coordinated-based center of mass calculation method. The proposed approach is verified by an unmanned aerial vehicle (UAV) embedded in a UAV system. The feasibility of the proposed model is demonstrated with high reliability, low operational cost, low false-positives, low false-negatives, and high true positives in comparison with existing rule-based solutions.
topic Behavior rules
cyber-physical systems
IoT
specification-based intrusion detection
zero-day attacks
url https://ieeexplore.ieee.org/document/8715740/
work_keys_str_mv AT vishalsharma briotbehaviorrulespecificationbasedmisbehaviordetectionforiotembeddedcyberphysicalsystems
AT ilsunyou briotbehaviorrulespecificationbasedmisbehaviordetectionforiotembeddedcyberphysicalsystems
AT kangbinyim briotbehaviorrulespecificationbasedmisbehaviordetectionforiotembeddedcyberphysicalsystems
AT ingraychen briotbehaviorrulespecificationbasedmisbehaviordetectionforiotembeddedcyberphysicalsystems
AT jinheecho briotbehaviorrulespecificationbasedmisbehaviordetectionforiotembeddedcyberphysicalsystems
_version_ 1721539784338309120

Similar Items