Detection of DDoS attack in IoT traffic using ensemble machine learning techniques

Nimisha Pandey; Pramod Kumar Mishra; Nimisha Pandey; Pramod Kumar Mishra

doi:10.3934/nhm.2023061

Networks and Heterogeneous Media

2023, Volume 18, Issue 4: 1393-1409. doi: 10.3934/nhm.2023061

Previous Article Next Article

Research article

Detection of DDoS attack in IoT traffic using ensemble machine learning techniques

Nimisha Pandey ,
Pramod Kumar Mishra ^,

Department of Computer Science, Institute of Science, Banaras Hindu University, Varanasi, Uttar Pradesh 221005, India

Received: 31 December 2022 Revised: 14 March 2023 Accepted: 13 April 2023 Published: 25 May 2023

A denial-of-service (DoS) attack aims to exhaust the resources of the victim by sending attack packets and ultimately stop the legitimate packets by various techniques. The paper discusses the consequences of distributed denial-of-service (DDoS) attacks in various application areas of Internet of Things (IoT). In this paper, we have analyzed the performance of machine learning(ML)-based classifiers including bagging and boosting techniques for the binary classification of attack traffic. For the analysis, we have used the benchmark CICDDoS2019 dataset which deals with DDoS attacks based on User Datagram Protocol (UDP) and Transmission Control Protocol (TCP) in order to study new kinds of attacks. Since these protocols are widely used for communication in IoT networks, this data has been used for studying DDoS attacks in the IoT domain. Since the data is highly unbalanced, class balancing is done using an ensemble sampling approach comprising random under-sampler and ADAptive SYNthetic (ADASYN) oversampling technique. Feature selection is achieved using two methods, i.e., (a) Pearson correlation coefficient and (b) Extra Tree classifier. Further, performance is evaluated for ML classifiers viz. Random Forest (RF), Naïve Bayes (NB), support vector machine (SVM), AdaBoost, eXtreme Gradient Boosting (XGBoost) and Gradient Boosting (GB) algorithms. It is found that RF has given the best performance with the least training and prediction time. Further, it is found that feature selection using extra trees classifier is more efficient as compared to the Pearson correlation coefficient method in terms of total time required in training and prediction for most classifiers. It is found that RF has given best performance with least time along with feature selection using Pearson correlation coefficient in attack detection.

Keywords:

Citation: Nimisha Pandey, Pramod Kumar Mishra. Detection of DDoS attack in IoT traffic using ensemble machine learning techniques[J]. Networks and Heterogeneous Media, 2023, 18(4): 1393-1409. doi: 10.3934/nhm.2023061

Related Papers:

[1]	Yiqin Bao, Qiang Zhao, Jie Sun, Wenbin Xu, Hongbing Lu . An edge cloud and Fibonacci-Diffie-Hellman encryption scheme for secure printer data transmission. Mathematical Biosciences and Engineering, 2024, 21(1): 96-115. doi: 10.3934/mbe.2024005
[2]	Pengpeng Wang, Xu Wang, Yumin Shen, Jinlong Wang, Xiaoyun Xiong . PBFT optimization algorithm based on community contributions. Mathematical Biosciences and Engineering, 2023, 20(6): 10200-10222. doi: 10.3934/mbe.2023447
[3]	Peng Guan, Lincoln C. Wood, Jason X. Wang, Linh N. K. Duong . Barriers to blockchain adoption in the seaport industry: A fuzzy DEMATEL analysis. Mathematical Biosciences and Engineering, 2023, 20(12): 20995-21031. doi: 10.3934/mbe.2023929
[4]	Jiayuan Zhang, Rongxin Guo, Yifan Shi, Wanting Tang . An anti-impersonation attack electronic health record sharing scheme based on proxy re-encryption and blockchain. Mathematical Biosciences and Engineering, 2024, 21(6): 6167-6189. doi: 10.3934/mbe.2024271
[5]	Yongjun Ren, Yan Leng, Yaping Cheng, Jin Wang . Secure data storage based on blockchain and coding in edge computing. Mathematical Biosciences and Engineering, 2019, 16(4): 1874-1892. doi: 10.3934/mbe.2019091
[6]	Abdullah Lakhan, Mazhar Ali Dootio, Ali Hassan Sodhro, Sandeep Pirbhulal, Tor Morten Groenli, Muhammad Saddam Khokhar, Lei Wang . Cost-efficient service selection and execution and blockchain-enabled serverless network for internet of medical things. Mathematical Biosciences and Engineering, 2021, 18(6): 7344-7362. doi: 10.3934/mbe.2021363
[7]	Naila Naz, Muazzam A Khan, Suliman A. Alsuhibany, Muhammad Diyan, Zhiyuan Tan, Muhammad Almas Khan, Jawad Ahmad . Ensemble learning-based IDS for sensors telemetry data in IoT networks. Mathematical Biosciences and Engineering, 2022, 19(10): 10550-10580. doi: 10.3934/mbe.2022493
[8]	Jiahe Xu, Yuan Tian, Tinghuai Ma, Najla Al-Nabhan . Intelligent manufacturing security model based on improved blockchain. Mathematical Biosciences and Engineering, 2020, 17(5): 5633-5650. doi: 10.3934/mbe.2020303
[9]	Ch. Rupa, Divya Midhunchakkaravarthy, Mohammad Kamrul Hasan, Hesham Alhumyani, Rashid A. Saeed . Industry 5.0: Ethereum blockchain technology based DApp smart contract. Mathematical Biosciences and Engineering, 2021, 18(5): 7010-7027. doi: 10.3934/mbe.2021349
[10]	Xiao-Dong Yang, Ze-Fan Liao, Bin Shu, Ai-Jia Chen . Blockchain-based multi-authority revocable data sharing scheme in smart grid. Mathematical Biosciences and Engineering, 2023, 20(7): 11957-11977. doi: 10.3934/mbe.2023531

Abstract

1. Introduction

As rapid development of internet of things (IoTs), a large number of devices in the IoTs and the volume of data generated make it further messy and huge. Further, there are high security risks while establishing an ecosystem containing all devices of the IoTs ^[1]. The blockchain is a decentralized ledger based on the consensus mechanism, cryptography and distributed storage in the intelligent transportation system. A perfect protocol and architecture design are essential to build a blockchain secure and reliable storage and trading network. In the field of IoT, blockchain can be used to provide security and privacy for user data in the network ^[2]. In the field of big data, blockchain can be used to improve data security and data quality ^[3]. In the field of healthcare domain Agbo et al. ^[4] made blockchain technology in healthcare: A systematic review. In the field of agri-food domain, Mirabelli ^[5] proposed a blockchain-based solution for agri-food supply chains. In the field of energy domain, Andoni et al. ^[6] proposed Blockchain technology in the energy sector: A systematic review of challenges and opportunities. In the field of Construction industry domain, Plevris et al. ^[7] proposed. Blockchain in civil engineering, architecture and construction industry: State of the art, evolution, challenges and opportunities. Bakogiannis et al. ^[8] proposed leveraging blockchain technology to break the cloud computing market monopoly in the field of cloud computing. In order to obtain data security, blockchain is also used in the field of fog computing and edge computing ^[9]. Khan et al. ^[10] pointed out that the scalability problem in the public blockchain hinders the provision of the best solution for enterprises and industries. Key management, encryption algorithm and smart contract are the core features of blockchain security ^[11]. Blockchain applications pay more attention to the core blockchain technologies and jointly provide a solid security cornerstone for blockchain applications from multiple dimensions such as security, data security, management security and application security ^[12], Bhat et al. ^[13] designed the agricultural food supply chain management system based on blockchain and IoT. Huh et al. ^[14] studied the blockchain consensus algorithm for feasible management of new and renewable energy. Astarita et al. ^[15] reviewed the application of blockchain in transportation system.

Message queue telemetry transmission (MQTT) is one of the common communication protocols for any platform in the IoTs. Whether from the perspective of overall security, equipment compatibility and resource consumption, MQTT protocol has certain advantages and is the most competitive communication protocol in the current IoT. However, the user password login form adopted by MQTT protocol has some security problems ^[16]. Diffie-Hellman (DH) key exchange algorithm is used to share public key and private key pairing for encryption and decryption in a secured manner. This algorithm is named after its inventor Diffie and Hellman ^[17], DH is not an encryption algorithm, but a secure key exchange algorithm, which is commonly used in cloud computing and blockchain systems ^[18]. Fibonacci sequence, also known as golden section sequence, is mathematically defined by recursive method: F(0) = 0, f(1) = 1, f(n) = f(n−1) + F(n−2) (n ≥ 2, n ∈ N) is used in many fields of physics and chemistry ^[19] and the third-order Fibonacci sequence is also used in the encryption and decryption applications ^[20].

Aiming at the problems of complex system and difficulty in implementation of the application of blockchain in intelligent transportation system, this paper proposes a lightweight fuzzy decision blockchain scheme through MQTT and DH Fibonacci technologies. Through this, the blockchain service scheme is scalable and easy to implement. DH and Fibonacci transformation are adopted to form lightweight fuzzy decision blockchain (LF-BC), which enhances the security and ensures the sustainable safety of the intelligent transportation system. The main contributions of this paper include three aspects:

● DH and Fibonacci transform are combined to form the fuzzy practical Byzantine fault tolerance (DH-FIB) algorithm which is used to generate LF-BC and to enhance the security.

● Realize scalable blockchain service scale and realize reliable communication of blockchain through MQTT protocol.

● In LF-BC blockchain system, using F-PBFT consensus algorithm, both fault tolerance rate and the transmission efficiency are significantly improved.

The paper is organized as follows. An extensive literature review on related technologies is undertaken in the second part. The third part proposes a lightweight fuzzy decision blockchain scheme. The fourth part compares and analyzes the experimental results. The fifth part summarizes the conclusion.

2. Related research

In this paper, we implement a trusted lightweight blockchain scheme based on MQTT and Fibonacci, discuss the recent existing research on MQTT protocol, Fibonacci matrix, DH algorithm, blockchain technology and propose to apply DH-FIB algorithm to blockchain scheme.

2.1. MQTT protocol

MQTT was originally developed by IBM as a communication protocol for telemedicine services. It is widely used in the IoTs because of its simplicity, specification, low overhead and easy implementation ^[21]. MQTT-publish based communication protocol, which creates and controls the hierarchy of topics, or subscribes to multiple topics. In March 2013, Oasis announced that MQTT was the preferred standard for the emerging IoTs messaging protocol. The model of MQTT protocol applied to the IoTs ^[22] is shown in Figure 1.

Figure 1. The data communication over MQTT protocol.

DownLoad: Full-Size Img PowerPoint

MQTT protocol frame format is shown in Table 1:

Table 1. MQTT frame format.

Control header	Packet length	Variable length header	Payload
1 Byte	1 to 4 Bytes	0–Y Bytes	0–X Bytes

| Show Table

DownLoad: CSV

The type of MQTT protocol package ^[23], is shown in Table 2.

Table 2. MQTT packets type.

Packets type	Type value	Details
CONNECT	0x01	Client request to connect to server
CONNACK	0x02	Connect acknowledgment
PUBLISH	0x03	Publish message
PUBACK	0x04	Publish acknowledgment
PUBREC	0x05	Publish received (assured delivery part 1)
PUBREL	0x06	Publish received (assured delivery part 2)
PUBCOMP	0x07	Publish received (assured delivery part 3)
SUBSCRIBE	0x08	Client subscribe request
UNSUBSCRIBE	0x0a	Unsubscribe request
PINGREQ	0x0c	PING request
DISCONNECT	0x0e	Client is disconnecting

| Show Table

DownLoad: CSV

MQTT protocol only specifies the message format and does not limit the load content and format of users. Therefore, we can customize the load format. There are three options for load format: 1) Hexadecimal/Binary: In this, there is no readability, but the flow can be controlled to relatively small extent; 2) String: This is easy to read, but is still not the best choice; 3) JSON-key value pair: The hierarchy is concise and clear, which is easy to read and write. While implementing the blockchain scheme, considering the security of confidentiality, hexadecimal format is adopted along with Modbus to implement the monitoring and control of the terminal.

MQTT protocol is simple, standardized and has certain advantages. It is the most competitive communication protocol in the current IoTs ^[24].

2.2. Fibonacci matrix

Fibonacci, an Italian mathematician in the 13th century, introduced an interesting sequence (called as Fibonacci sequence) from the problem of rabbit reproduction, record as {Fn}. It is a second-order recursive sequence, F₀ = 0, F₁ = 1, F_n+1 = F_n + F_n−1, n = 1, 2, 3…, and we call each term of this sequence as Fibonacci number. Researchers are interested in Fibonacci sequence over years because of its unique properties and are widely using in computational mathematics, optimization theory, operations research and other fields ^[25,26].

Reference ^[27] defines Fibonacci matrix T₂, which corresponds to the second-order Fibonacci sequence {Fn} and is expressed as:

$\left( {\begin{array}{*{20}{c}} {{{\text{F}}_{{\text{n}} + {\text{1}}}}}&{{{\text{F}}_{\text{n}}}} \\ {{{\text{F}}_{\text{n}}}}&{{{\text{F}}_{{\text{n - 1}}}}} \end{array}} \right) = {\left( {\begin{array}{*{20}{c}} 1&1 \\ 1&0 \end{array}} \right)^{\text{n}}} = {{\text{T}}_2}^\text{n} _{, } \text{n} = 1, 2, 3…$

(1)

Reference ^[28] defines the third-order Fibonacci matrix T₃, which corresponds to the third-order Fibonacci sequence {Fn}−a third-order recursive sequence F₀ = 1, F₁ = 1, F₂ = 2, F_n+1 = F_n + F_n−1 + F_n−2, n = 2, 3, 4…, and is expressed as:

$\left(\begin{array}{ccc} \mathrm{F}_{\mathrm{n}} & \mathrm{F}_{\mathrm{n}+1}-\mathrm{F}_{\mathrm{n}} & \mathrm{F}_{\mathrm{n}-1} \\ \mathrm{~F}_{\mathrm{n}-1} & \mathrm{~F}_{\mathrm{n}}-\mathrm{F}_{\mathrm{n}-1} & \mathrm{~F}_{\mathrm{n}-2} \\ \mathrm{~F}_{\mathrm{n}-2} & \mathrm{~F}_{\mathrm{n}-1}-\mathrm{F}_{\mathrm{n}-2} & \mathrm{~F}_{\mathrm{n}-3} \end{array}\right) = \left(\begin{array}{ccc} 1 & 1 & 1 \\ 1 & 0 & 0 \\ 0 & 1 & 0 \end{array}\right)^{\mathrm{n}} = \mathrm{T}_{3}{ }^{\mathrm{n}}, \mathrm{n} = 3, 4, 5 \ldots$

(2)

Since the determinant |T₃| = 1 corresponding to the third-order Fibonacci matrix, T₃ is reversible.

$\mathrm{T}_{3} = \left(\begin{array}{ccc} 1 & 1 & 1 \\ 1 & 0 & 0 \\ 0 & 1 & 0 \end{array}\right) \quad \mathrm{T}_{3}^{-1} = \left(\begin{array}{ccc} 0 & 1 & 0 \\ 0 & 0 & 1 \\ 1 & -1 & -1 \end{array}\right)$

(3)

Similarly, |T₃ⁿ| = 1, so T₃ⁿ is also reversible. The formulae for calculating T₃ⁿ and (T₃ⁿ)⁻¹ are as follows:

Since:

${\left( {\begin{array}{*{20}{c}} 1&1&1 \\ 1&0&0 \\ 0&1&0 \end{array}} \right)^{{\text{k1}} + {\text{k}}2}} = {\left( {\begin{array}{*{20}{c}} 1&1&1 \\ 1&0&0 \\ 0&1&0 \end{array}} \right)^{{\text{k1}}}}*{\left( {\begin{array}{*{20}{c}} 1&1&1 \\ 1&0&0 \\ 0&1&0 \end{array}} \right)^{{\text{k2}}}}$

(4)

${\left( {\begin{array}{*{20}{c}} 0&1&0 \\ 0&0&1 \\ 1&{ - 1}&{ - 1} \end{array}} \right)^{{\text{k1}} + k2}} = {\left( {\begin{array}{*{20}{c}} 0&1&0 \\ 0&0&1 \\ 1&{ - 1}&{ - 1} \end{array}} \right)^{{\text{k1}}}}*{\left( {\begin{array}{*{20}{c}} 0&1&0 \\ 0&0&1 \\ 1&{ - 1}&{ - 1} \end{array}} \right)^{k2}}$

(5)

So:

$\mathrm{T}_{3}{ }^{\mathrm{n}} = \left(\begin{array}{ccc} 1 & 1 & 1 \\ 1 & 0 & 0 \\ 0 & 1 & 0 \end{array}\right)^{\mathrm{n}} \quad\left(\mathrm{T}_{3}{ }^{\mathrm{n}}\right)^{-1} = \left(\begin{array}{ccc} 0 & 1 & 0 \\ 0 & 0 & 1 \\ 1 & -1 & -1 \end{array}\right)^{\mathrm{n}}$

(6)

For example, n = 5, T₃⁵ and (T₃⁵)⁻¹ are calculated by formula (6):

$\mathrm{T}_{3}{ }^{5} = \left(\begin{array}{ccc} 13 & 11 & 7 \\ 7 & 6 & 4 \\ 4 & 3 & 2 \end{array}\right) \quad\left(\mathrm{T}_{3}^{5}\right)^{-1} = \left(\begin{array}{ccc} 0 & -1 & 2 \\ 2 & -2 & -3 \\ -3 & 5 & 1 \end{array}\right)$

(7)

We make F_n = T₃ⁿ, F_n⁻¹ = (T₃ⁿ)⁻¹, use the characteristics of the third-order Fibonacci matrix T₃ⁿ reversible sum formula (6), take n as a parameter, and apply F_n and F_n⁻¹ to the encryption process of LF-BC blockchain in this paper.

2.3. DH Encryption algorithm

Cryptography is the most important part of the blockchain system and the basic technology to realize the blockchain ^[29]. DH is an asymmetric encryption algorithm, which is commonly used in blockchain encryption schemes. It is also a public key algorithm ^[30]. Each communication party generates a private key and a public key, where the private key is not public. After the public key is publicly exchanged, the communication parties can calculate the shared key, and the shared key calculated by both parties is the same. Therefore, both parties can encrypt and decrypt the message ^[31,32] through the shared key, so as to realize the encrypted transmission of the message. DH negotiates a shared key through unreliable channels. In many industrial security protocols, such as SSL/TLS, SSH, Kerberos, ISO-9798-3, just fast key and PKI key distribution are widely used.

Alice sends the encrypted transmission process of plaintext M to Bob, as shown in Figure 2.

Figure 2. DH encryption process flow diagram.

DownLoad: Full-Size Img PowerPoint

Encryption process (Alice)

Step 1: First agree two parameters g, N with Bob;

Step2: Randomly generates own private key x, and calculate X = g^x mod N, X as the public key;

Step3: Select the public key Y = g^y mod N, is sent by Bob and calculate the key: K = Y^x mod N = g^xy mod N, K as the shared key with Bob;

Step 4: Calculate the encrypted data Cm = E_k1(M);

Step5: Discloses sending Cm to Bob.

Decryption process (Bob)

Step1: First agree two parameters g, n with Alice;

Step2: Randomly generates own private key y, and calculates Y = g^y mod N, Y as the public key;

Step3: Select the public key X = g^x mod N sent by the sender and calculate the key, G = X^y mod N = g^{x y}mod N, G as the shared key with Alice;

Step4: Publicly receives cm and decrypts data, D_G(Cm) = D_G(E_K(M)) = M;

Step5: Finally obtains m from the slave.

DH is the basis of authentication key exchange (AKE) scheme in the post quantum computing era ^[33]. It combines DH and Fibonacci transformation to form LF-BC blockchain, which is a specific application of DH in vehicle intelligent transportation system.

2.4. Blockchain technology

Blockchain technology was originally applied in the field of Internet finance to solve the trust problem of the third-party central institutions and provide a trust mechanism for decentralized transactions. The central idea of blockchain technology comes from the Bitcoin project released and implemented in 2009. The core technologies involved in the project mainly include cryptography, incentive mechanism, workload proof mechanism, P2P network, distributed database ^[34] and other technologies. It has four key characteristics.

● Decentralized network

The essence of blockchain is a decentralized distributed database, which is composed of a series of blocks generated by cryptography. The blocks contain data information that cannot be tampered within a certain period of time. Block contains data record, current block root hash, previous block root hash, time stamp and other information. Each user node in the network is both a client and a server. Each node has a complete backup of the whole database, and all nodes insert data through a specific consensus algorithm ^[35,36].

● Trusted blockchain structure

A blockchain consists of a block header and a block body as shown in Figure 3.

Figure 3. One block structure.

DownLoad: Full-Size Img PowerPoint

In Figure 3, block hash represents the hash value of the block header, pre-hash represents the hash value of the previous block, Merkel hash represents the Merkel hash value generated by the transaction number Tx_id, transaction number represents the number of transaction orders, time stamp represents the time stamp of the generated block, public key represents the public key of the generated block, and signature represents that the private key encrypts and signs of the user information. Policy header represents the permission control header of the block body ^[37], Transaction_i (i = 1...n) represents several transaction orders of the block body.

● Smart contract

Smart contracts are programmable protocols that allow the execution of the contract terms and agreements. The concept was first proposed by Szabo, who defined a smart contract as "a computerized transaction protocol that executes the terms of a contract". Thus, smart contracts can be deployed to a blockchain database and users can develop computer codes based on contractual clauses ^[38].

● Consensus algorithm

Practical byzantine fault tolerance (PBFT) algorithm is a consensus algorithm proposed by Miguel Castro and Arbara Liskov in 1999. PBFT is an algorithm to solve the consistency of state machine replicas in distributed scenarios ^[39]. The implementation of PBFT is divided into five steps: (1) Request, (2) Pre-prepare, (3) Prepare, (4) Commit, (5) Reply ^[40].

The process of PBFT algorithm is shown in Figure 4.

Figure 4. PBFT algorithm process.

DownLoad: Full-Size Img PowerPoint

PBFT is a state machine replication algorithm. State machines replicate in different nodes of the distributed system. The copy of each state machine not only saves the state of the service, but also realizes the operation of the service. For convenience of description, assuming that n is the total number of cluster nodes, the security and consistency of the consensus cluster can be guaranteed when the failed nodes do not exceed (n−1)/3. Therefore, the fault-tolerance rate of PBFT is:

$\mathrm{F}_{1} = (\mathrm{n}-1) / 3$

(8)

In other words, as long as the nodes exceeding (n−1)−F₁ = 2*(n−1)/3 are honest, the validity of blockchain data can be guaranteed.

3. Lightweight fuzzy decision blockchain scheme

3.1. Lightweight fuzzy decision blockchain scheme architecture

The lightweight fuzzy decision blockchain scheme mainly includes four parts: client, terminal, blockchain system and cloud plan work. 1) The client is the user's operating software, which can be a web client or APP; 2) The terminal mainly realizes GPS positioning, signal processing and control, and then realizes communication with the cloud platform; 3) Blockchain system is a service system responsible for data security, which refers to MQTT broker; 4) Cloud platform is a network platform responsible for remote communication and data management. The system architecture is shown in Figure 5, the communication between client, terminal, blockchain system and cloud platform is carried out through the publish and subscription (Pub/Sub) topic of MQTT. there is implementation process in Section 3.5.

Figure 5. Lightweight fuzzy decision blockchain system architecture.

DownLoad: Full-Size Img PowerPoint

Based on MQTT and Fibonacci fuzzy decision blockchain scheme, due to the use of LF-BC blockchain in the architecture, the security problem of the traditional centralized architecture has been effectively solved. When the system is implemented, it mainly includes two transactions: 1) User registration and 2) Data transmission, as shown in Figure 6.

Figure 6. Data flow of LF-BC blockchain transactions.

DownLoad: Full-Size Img PowerPoint

In the user registration stage, the user inputs the user information to form a transaction order, and the registration information is encrypted and stored on the nodes of the blockchain through cryptographic technology and consensus algorithm F-PBFT; while in the data transmissionstage, the data message forms a transaction order. Through cryptography and consensus algorithm F-PBFT, the data message is stored in the blockchain and the information is transmitted to the terminal.

3.2. DH-FIB fuzzy decision encryption algorithm

The basic principle of generating DH-FIB algorithm from Fibonacci matrix to DH encryption algorithm is as follows: 1) The sender and the receiver generate their own private key vectors, such as x = (x1, x2, x3), and generate their own public key vectors X and Y. 2) After X and y are exchanged, generate shared key vectors K and G, and calculate that the values of K and G are equal. 3) The sender's original m is encrypted into ciphertext Cm through K, and C is multiplied by Fibonacci matrix Fn to generate ciphertext vector Em = C*Fn, Em = {E1, E2, E3}, Em and sends it to the receiver. 4) The receiver multiplies the received em by the Fibonacci inverse matrix Fn−1, Em*Fn−1 = Cm*Fn*Fn−1 = Cm, finally decrypts Cm through the key vector G to obtain the original vector Em = (M1, M2, M3), and finally compares M1, M2, M3 through the voting algorithm to obtain the original M.

DH-FIB is called fuzzy decision encryption algorithm. Since the encryption key is random and Fibonacci transformed, the ciphertext generated each time is different. For example, the ciphertext obtained by the middleman is ambiguous. Secondly, due to the use of key vector, it is necessary to make decision on the result to achieve the purpose of fault tolerance, reliability and sustainability.

The encryption process of user sending plaintext m to Terminal is shown in Figure 7.

Figure 7. DH-FIB encryption process flow diagram.

DownLoad: Full-Size Img PowerPoint

● Encryption process (user)

Step 1: First agree three parameters g, N, n of F_n with terminal;

Step 2: Randomly generate private key vector x = (x1, x2, x3) and calculate public key vector: X = (g^x1 mod N, g^x2mod N, g^x3mod N);

Step3: Select terminal's public key vector Y = (g^y1 mod N, g^y2 mod N, g^y3 mod N) and calculate: K = Y^x = (g^x1*y1mod N, g^x2*y2mod N, g^x3*y3mod N); K is defined as (K1, K2, K3), and is used as the shared key with terminal;

Step 4: Calculate the encrypted data C, for example, the original file m has 5 bytes;

M = (M1, M2, M3, M4, M5) (even for n bytes, the principle remains the same), calculate encryption matrix: Cm = E_k(M).

$C m = \left(\begin{array}{lll} \mathrm{C}_{11} & \mathrm{C}_{12} & \mathrm{C}_{13} \\ \mathrm{C}_{21} & \mathrm{C}_{22} & \mathrm{C}_{23} \\ \mathrm{C}_{31} & \mathrm{C}_{32} & \mathrm{C}_{33} \\ \mathrm{C}_{41} & \mathrm{C}_{42} & \mathrm{C}_{43} \\ \mathrm{C}_{51} & \mathrm{C}_{52} & \mathrm{C}_{53} \end{array}\right)$

(9)

Step 5: Select the third-order Fibonacci matrix F_n, see formula (6);

Step 6: Calculate the encryption matrix Em by formulas (9) and (6);

$Em = Cm*F_{ } = \left( {\begin{array}{*{20}{c}} {{{\text{E}}_{11}}}&{{{\text{E}}_{12}}}&{{{\text{E}}_{13}}} \\ {{{\text{E}}_{21}}}&{{{\text{E}}_{22}}}&{{{\text{E}}_{23}}} \\ {{{\text{E}}_{31}}}&{{{\text{E}}_{32}}}&{{{\text{E}}_{33}}} \\ {{{\text{E}}_{41}}}&{{{\text{E}}_{42}}}&{{{\text{E}}_{43}}} \\ {{{\text{E}}_{51}}}&{{{\text{E}}_{52}}}&{{{\text{E}}_{53}}} \end{array}} \right)$

(10)

Step 7: Convert Em to encrypted vector;

$E m = \mathit\{E \mathit{1}, E \mathit{2}, E \mathit{3}\mathit{\}}$

(11)

Step 8: Publicly send Em to terminal.

Decryption process (terminal)

Step 1: First agree three parameters g, N, n of F_n with user;

Step 2: Randomly generate their own private key vector y = (y1, y2, y3) and calculate public key vector: Y = (g^y1 mod N, g^y2 mod N, g^y3 mod N);

Step 3: Select user's public key vector X = (g^x1 mod N, g^x2mod N, g^x3mod N), and calculate: G = X^y = −(g^x1*y1mod N, g^x2*y2mod N, g^x3*y3mod N), G is defined as (G1, G2, G3), and is used as the shared key with user;

Step 4: Publicly accept T, T = {E1, E2, E3};

Step 5: Select the third-order Fibonacci inverse matrixF_n⁻¹, see formula (6);

Step6: The decryption transformation matrix Cm is calculated by formulae (10) and (6). Cm = E*F_n⁻¹ mod N;

Since:

$F_{n}*F_{n}^{−1 } = \left( {\begin{array}{*{20}{c}} 1&0&0 \\ 0&1&0 \\ 0&0&1 \end{array}} \right)$

(12)

So:

(13)

Step 7: The decryption matrix is calculated by G and formula (13).

$Mn = D_{G}(Cm) = \left( {\begin{array}{*{20}{c}} {{{\text{M}}_{11}}}&{{{\text{M}}_{12}}}&{{{\text{M}}_{13}}} \\ {{{\text{M}}_{21}}}&{{{\text{M}}_{22}}}&{{{\text{M}}_{23}}} \\ {{{\text{M}}_{31}}}&{{{\text{M}}_{32}}}&{{{\text{M}}_{33}}} \\ {{{\text{M}}_{41}}}&{{{\text{M}}_{42}}}&{{{\text{M}}_{43}}} \\ {{{\text{M}}_{51}}}&{{{\text{M}}_{52}}}&{{{\text{M}}_{53}}} \end{array}} \right)$

(14)

Set:

$M n = \{M \mathit{1}, M \mathit{2}, M \mathit{3}\}$

(15)

From formula (14), M1, M2, M3 should be equal;

Step 8: The original text is obtained from the decryption Matrix Mn through the voting algorithm.

3.3. LF-BC fuzzy decision blockchain and MQTT frame

The DH-FIB algorithm is applied to the blockchain system, and the generated blockchain is called lightweight fuzzy decision blockchain (LF-BC). Corresponding to a specific application, such as the remote monitoring system, the client in the system monitors the terminal through MQTT. We define the remote terminal as RTU, the control message adopts MQTT frame format, and the domain in MQTT frame format adopts DH-FIB blockchain structure, as shown in Figure 8. A blockchain includes a block header and a block body. The block body includes a policy header and several transaction orders. The transaction order is defined as a Modbus message.

Figure 8. LF-BC blockchain and MQTT frame format.

DownLoad: Full-Size Img PowerPoint

The block header is used to ensure the security and integrity of blockchain. Police header is used for permission control and is the basis of blockchain data structure. The authorizer is a single entity user or multiple user groups ^[41].

LF-BC blockchain has three main functions:

● Authority management

Authority management completes permission control through police control header, which includes record number (No), authorizer, RTU_id, active and state. RTU authority management function is a very important part of LF-BC blockchain system, which is directly related to the security of application system.

● Storage management

Storage management is mainly used to manage the transactions. The transaction includes: transaction number (Tx_id) and Modbus message. Modbus protocol is the basic protocol commonly used in industrial automation system ^[42], which is also widely used in intelligent transportation system. The Modbus format is shown in Table 3.

Table 3. Modbus protocol format.

RTU_id

Function

Data_Adress

DATA

CRC

| Show Table

DownLoad: CSV

● DH-FIB encryption and fault tolerance management

LF-BC blockchain adopts encryption fault-tolerant management for transactions. An example used in this paper is the remote monitoring system. Communication messages need to be encrypted to prevent man in the middle attack and eavesdropping.

As shown in Figure 9, Modbus messages generate encryption vectors Em = {E1, E2, E3} through DH-FIB encryption algorithm. See formula (11), E1, E2 and E3 is used as three transactions of the blockchain respectively. After receiving the blockchain, the receiver decrypts it through DH-FIB algorithm to form three new transactions Mn = {M1, M2, M3}, as shown in formula (14), and finally restores it to Modbus message through fault-tolerant voting algorithm.

Figure 9. Encryption and decryption process of Modbus message transaction.

DownLoad: Full-Size Img PowerPoint

3.4. F-PBFT consensus algorithm

Ordinary blockchain schemes use PBFT consensus algorithm. A complete PBFT consensus needs to be completed twice communication, the complexity is O(n2), and its fault tolerance rate is F1 = (n−1)/3, see formula (9). This paper defines the consensus algorithm of the LF-BC blockchain scheme as F-PBFT. Through DH-FIB encryption algorithm, a complete message forms a consensus node. The consensus node contains three transaction orders Mn = {M1, M2, m3}. See formula (15). Take {M1, M2, m3} as a group with a fault tolerance of F2 = 1/3. Vote in the group to reach consensus. Therefore, A complete F-PBFT consensus needs to be completed twicecommunication, the complexity is O(n2/3), which greatly reduces the complexity of the communication.

Since one message generates three transaction orders and PBFT voting algorithm is adopted at the same time, the fault tolerance rate of F-PBFT is:

$F \mathit{3} = \mathit{(}n-\mathit{1)}-\mathit{(1}-F \mathit{1)} *\mathit{(1}-F \mathit{2)} = \mathit{(}n-\mathit{1)}-\mathit{(1}-\mathit{1} / \mathit{3)} *\mathit{(1}-\mathit{(}n-\mathit{1)} / \mathit{3)} = \mathit{5} *\mathit{(}n-\mathit{1)} / \mathit{9}$

(16)

3.5. Implementation of MQTT communication

The composition of the system is shown in Figure 5, and the subscription topic definition of its components is shown in Table 4:

Table 4. Definition of subscrip topic.

Component	Subscrip topic
MQTT-1, MQTT-2, ..., MQTT-n	MQTT_topic
Cloud Platform	Cloud_topic
Client	Client_topic
Terminal	Terminal_topic

| Show Table

DownLoad: CSV

MQTT communication process:

The process that the client sends data to the terminal through MQTT is as follows:

● The client sends information to the cloud platform by publish topic (Cloud_topic);

● The cloud platform receives the information and sends information to MQTT-1, MQTT-2, ..., MQTT-n by publish topic (MQTT_topic);

● After receiving the information, MQTT-1, MQTT-2, ..., MQTT-n performs the consensus algorithm and sends information to the cloud platform by publish topic (Cloud_topic);

● The cloud platform receives three groups of information. The cloud platform sends a group of information to the terminal through the voting algorithm by publish topic (Terminal_topic).

3.6. Implementation Process of LF-BC blockchain scheme

The implementation process of LF-BC blockchain security scheme realizes the security of communication messages through the system without leakage. It mainly involves: encryption method, MQTT transmission, consensus algorithm, blockchain authentication, etc., mainly including: 1) User registration process and 2) data transmission process.

● User registration process

The flow chart of user registration (registered user name and password) in the system is shown in Figure 10.

Figure 10. User registration flow chart of user.

DownLoad: Full-Size Img PowerPoint

Step 1: User sets three parameters g, N, n of F_n, randomly generates x = (x1, x2, x3), and calculates X and F_n. X = (g^x1 mod N, g^x2mod N, g^x3mod N);

Step 2: User sends g, N, n, X to cloud platform; U = > P:{g, N, n, X};

Step 3: Cloud platform generates y = (y1, y2, y3) and calculates Y and G; Y = (g^y1 mod N, g^y2mod N, g^y3mod N); G = X^y = (g^x1*y1mod N, g^x2*y2mod N, g^x3*y3mod N);

Step 4: Cloud platform sends Y to user; P = > U:{Y};

Step 5: User calculates K; K = Y^x = (g^x1*y1mod N, g^x2*y2mod N, g^x3*y3mod N);

Step 6: User inputs ID and PW, calculates: Em = E_k (ID, PW)* F_n; U = > P:{ID, Em};

Step 7: Cloud platform decrypts Em, calculates:

a) ID, PW = D_G(Em*F_n^-1);

b) Judge whether the ID and PW are equal to those in the database;

c) Calculate user id: Uid = H(ID, PW);

d) Calculate digital signature: S = sign(id, G).

Step 8: Cloud platform sends Uid to user; P = > U:{Uid};

Step 9: Cloud platform sends Uid, timestamp T, public key; P, S and blockB_hashto blockchain system; P = > B:{Uid, T, Y, P, B_hash};

Step 10: Blockchain system forms a blockchain and vote the transaction through the F-PBFT consensus algorithm and saves it to each blockchain node.

● Data transmission process

The security of data transmission is the most critical part of LF-BC blockchain scheme, which realizes the encryption and integrity of data. The data transmission flow chart is shown in Figure 11.

Figure 11. Blockchain data transmission flow chart of user.

DownLoad: Full-Size Img PowerPoint

Step 1: User input Uid, RTU_addr, Modbus packet M_data; U = > P:{Uid, RTU_addr, M_data};

Step 2: Cloud platform checks whether the Uid is equal to the Uid of the database, and makes digital signature: S = sign(Uaddr, G);

Step 3: Cloud platform sends the address Uid, T, P, S and blockB_hash to blockchain system; P = > B:{Uid, T, P, S, B_hash};

Step 4: Blockchain system forms ablockclaim transaction and vote the transaction through the F-PBFT consensus algorithm, saves it to each block node;

Step 5: Blockchain system sends Police_head and transaction to cloud platform; B = > P:{Police_head, Transaction}

Step 6: Cloud platform sends Transaction to RTU; P = > RTU:{Transaction};

Step 7: RTU checks whether the RTU_addr is consistent with its own, parse packet M_data from the transaction;

Step 8: RTU checks whether the CRC is correct and executes Modbus command P_data;

Step 9: RTU sends Ack-data to Cloud platform; RTU = > P:{Ack-data};

Step 10: Cloud platform sends Ack-data to user. P = > U:{Ack-data}.

4. Testing and comparison

4.1. Case realization

This section takes the vehicle intelligent transportation system as an example to realize the specific application. First, establish a LF-BC blockchain through MQTT broker. Only authorized nodes can read blocks, execute smart contracts and verify new blocks in this blockchain. Secondly, the pre approved nodes agree and verify the blockchain through F-PBFT. The authorized nodes include data load terminal, cloud platform, MQTT broker and client.

The application block diagram of vehicle intelligent transportation system is shown in Figure 12. After the load terminal completes the monitoring, it encapsulates the monitoring data to be uploaded (such as equipment type, position, voltage, power, switch, monitoring time, etc.), then digitally signs these data in blockchain, and sends the signed data to cloud platform and blockchain system through MQTT. Finally, The client remotely monitors and controls the device through MQTT.

Figure 12. Application block diagram of intelligent transportation system.

DownLoad: Full-Size Img PowerPoint

The following two sections emphasize the performance index analysis to illustrate the implementation effect of the system and verify the feasibility of this scheme.

4.2. Safety performance analysis

The lightweight blockchain scheme suggested in this paper is significantly different from the existing centralized monitoring system and analyzes the security of the blockchain scheme from the following three aspects.

● Decentralization: The decentralized network architecture is adopted in which the transaction information is verified by all nodes, and finally a trusted blockchain is formed. Even if some nodes fail or are attacked by hackers, the failed nodes can still return to normal. The centralized system architecture however, is vulnerable to attacks (such as DDoS attacks, SQL injection attacks, etc.).

● Non tamperability: Digital signature can resist forgery attack under random key, so it can not be easily tampered. The fault tolerance performance is improved and the success rate of tampering and modification will be very low in the adoption of DH-FIB encryption algorithm and F-PBFT consensu.

● Traceability: The consensus node will verify the authenticity of the transaction. Each F-PBFT block has the hash value of the previous block, which can be traced back to the source Modbus message. When a malicious node deletes or modifies the content of a block, the system can easily restore and trace all transaction data.

4.3. Fault-tolerance performance analysis

The collection was verified using three methods: the first was manual checking (MAC); the second one was common checking system (CMC)-referred as reading data through a single meter reading software and then checking data through a single image recognition software (such as Baidu cloud recognition) when the data could not be read; and the third one was the Petri parallel system, which was a parallel system of data acquisition and image recognition based on PN.

The higher the fault tolerance rate of the system, the higher is the transmission efficiency and the lower the fault tolerance rate, the lower is the transmission efficiency. The fault tolerance rates of the three schemes are compared below:

● Fault tolerance rate of the data redundancy: Centralized architecture often collects data. For example, a message is transmitted redundantly for three times, and the minority obeys the majority voting is adopted, so the fault tolerance rate is 1/3.

● PBFT fault tolerance rate: The common blockchain architecture adopts that if malicious nodes are evenly distributed on each blockchain, when the number of nodes does not exceed 1/3 of the total number of nodes, the consensus result is correct and has no impact on the system output result. The fault tolerance ability of the system is (n−1)/ 3, so the fault tolerance rate is 1/3.

● F-PBFT fault tolerance rate: The lightweight blockchain architecture in this paper adopts the F-PBFT consensus algorithm. One message generates three transaction orders, as shown in formula 16. The total fault tolerance is 5*(n−1)/9. Therefore, the fault tolerance is 5/9.

On comparing the fault tolerance rates of the three schemes in the histogram in Figure 13, it is observed that the fault tolerance rate of F-PBFT has increased by 22.3%.

Figure 13. Comparison of fault tolerance of three schemes.

DownLoad: Full-Size Img PowerPoint

4.4. Data transmission time overhead comparison

Three architectures are compared by testing the data transmission time overhead on the load equipment monitoring system with wireless interference namely, 1) Centralized Architecture (CT-A), 2) Ordinary blockchain Architecture (BC-A); 3) Lightweight fuzzy decision blockchain Architecture (LF-BC-A). In the experiment, each Modbus message data contains 20 bytes, and the error code of one byte is randomly set in every three messages. The transmission time is calculated for the number of messages. B10 represents 10 messages, B20 represents 20 messages, and so on. B100 represents 100 messages. Communication parameters: 9600: 8: n: 1 (rate 9600 bps, 8-bit data bits, no parity check, 1-bit stop bit). Test under the same environment. The results are shown in Table 5.

Table 5. Time cost of transmitting encrypted data messages (s).

Architecture	B10	B20	B30	B40	B50	B60	B70	B80	B90	B100
CT-A	1.2	2.2	3.5	4.5	5.6	7.2	9.0	10.0	12.1	14.2
BC-A	1.1	2.5	3.8	4.8	5.9	8.0	9.5	11.2	13.4	15.0
LF-BC-A	1.1	2.0	3.1	4.2	5.1	6.3	7.2	8.3	9.1	10.5

| Show Table

DownLoad: CSV

The comparison curve based on Table 5 is shown in Figure 14, which intuitively reflects the time overhead of encrypted data transmission. X-axis represents the number of messages to be transmitted, and y-axis represents the time of message transmission.

Figure 14. Time cost curve of transmitting encrypted messages.

DownLoad: Full-Size Img PowerPoint

Following observations are made from Figure 14. 1) In the centralized architecture, when the message is found to have error code (the error code can be judged by the check code in the message), the message needs to be retransmitted, so the transmission time of encrypted data is lower than that of the ordinary blockchain and lightweight blockchain in this paper; 2) On the other hand, in case of the PBFT fault tolerance algorithm, the ordinary blockchain architecture is more efficient than the centralized architecture; 3) whereas, in the F-PBFT fault tolerance algorithm, the LF-BC blockchain architecture has lower data transmission time overhead and the highest efficiency. Both theory and experiment prove that the LF-BC blockchain scheme in this paper has high transmission efficiency in the case of wireless interference.

4.5. Performance index comparison

This sub-section compares the performance of the three architectures by testing on the vehicle intelligent transportation system, combined with six performance indexes: 1) Data flow, 2) Complexity, 3) Fault tolerance, 4) Security, 5) Reliability, 6) Maintainability. The analysis results are shown in Table 6. The inferences are as follows:

Table 6. Comparison of three architecture performance indexes.

Performance index	Centralized architecture (CT-A)	Blockchain architecture (BC-A)	Lightweight blockchain architecture (LF-BC-A)
Data flow	Small	Big	Medium
Complexity	Small	Big	Medium
Fault tolerance	Bad	Good	Best
Security	Bad	Good	Good
Reliability	Bad	Good	Good
Maintainability	Easy	Not easy	Easy

| Show Table

DownLoad: CSV

● Compared with the ordinary blockchain architecture, the LF-BC blockchain architecture in this paper has smaller scale, easier implementation and less complexity, but the data flow is obviously larger than the centralized architecture.

● Further due to the addition of Fibonacci transform on the basis of HD, its security and encryption performance are better.

● The above analysis infers that the fault tolerance and reliability of this scheme have significantly improved.

● Τhe scheme of this paper is lightweight blockchain, which has small scale and is easier to maintain.

Based on the above characteristics, the LF-BC blockchain architecture has certain scalability and can be applied to similar industries, such as agricultural food supply chain system, smart grid system, etc.

5. Conclusions and future work

This paper proposes a lightweight fuzzy decision blockchain LF-BC scheme based on MQTT and Fibonacci. Through this scheme, the major problem of complex and difficult deployment of blockchain is solved. The reliable communication of the blockchain is realized through MQTT, the LF-BC blockchain is formed by HD algorithm and Fibonacci matrix, which enhances both the security and the fault-tolerance rate by F-PBFT consensus algorithm. Moreover, from the realization of the case under consideration and its comparative analysis of the performance demonstrate the feasibility of this scheme and ensures the sustainable safety of the intelligent transportation system.

This blockchain LF-BC scheme is a lightweight scheme, which has not been verified in a large-scale system. It has only been applied in an urban on-board intelligent transportation system, and has certain limitations. It is envisaged in future research to expand the application of blockchain based on the combination of HD algorithm and Fibonacci matrix, which not only can be applied to the blockchain scheme of intelligent transportation system, but also useful in other aspects.

Acknowledgments

This study was supported by the Natural Science Foundation Project of China (61976118), the Natural Science Foundation Project of Jiangsu Province (BK20180142), and the key topics of the "13th five-year plan" for Education Science in Jiangsu Province (B-b /2020/01/18).

Conflict of interest

All authors declare no conflicts of interest in this paper.

References

[1]	K. O. Adefemi Alimi, K. Ouahada, A. M. Abu-Mahfouz, S. Rimer, O. A. Alimi, Refined lstm based intrusion detection for denial-of-service attack in internet of things, J. Sens. Actuator Networks, 11 (2022), 32. https://doi.org/10.3390/jsan11030032 doi: 10.3390/jsan11030032
[2]	K. Alieyan, A. Almomani, M. Anbar, M. Alauthman, R. Abdullah, B. B. Gupta, Dns rule-based schema to botnet detection, Enterp. Inf. Syst., 15 (2021), 545–564. https://doi.org/10.1080/17517575.2019.1644673 doi: 10.1080/17517575.2019.1644673
[3]	A. Dahiya, B. B. Gupta, A reputation score policy and bayesian game theory based incentivized mechanism for ddos attacks mitigation and cyber defense, Future Gener. Comput. Syst., 117 (2021), 193–204. https://doi.org/10.1016/j.future.2020.11.027 doi: 10.1016/j.future.2020.11.027
[4]	M. V. de Assis, L. F. Carvalho, J. J. Rodrigues, J. Lloret, M. L. Proença Jr, Near real-time security system applied to sdn environments in IoT networks using convolutional neural network, Comput. Electr. Eng., 86 (2020), 106738. https://doi.org/10.1016/j.compeleceng.2020.106738 doi: 10.1016/j.compeleceng.2020.106738
[5]	R. K. Deka, D. K. Bhattacharyya, J. K. Kalita, Active learning to detect ddos attack using ranked features, Comput. Commun., 145 (2019), 203–222. https://doi.org/10.1016/j.comcom.2019.06.010 doi: 10.1016/j.comcom.2019.06.010
[6]	R. Doshi, N. Apthorpe, N. Feamster, Machine learning ddos detection for consumer internet of things devices, in 2018 IEEE Security and Privacy Workshops (SPW), IEEE, (2018), 29–35. https://doi.org/10.1109/SPW.2018.00013
[7]	V. Hassija, V. Chamola, V. Saxena and D. Jain, A survey on IoT security: application areas, security threats, and solution architectures, IEEE Access, 7 (2019), 82721–82743. https://doi.org/10.1109/ACCESS.2019.2924045 doi: 10.1109/ACCESS.2019.2924045
[8]	T. Horak, P. Strelec, L. Huraj, P. Tanuska, A. Vaclavova, M. Kebisek, The vulnerability of the production line using industrial Iot systems under DDoS attack, Electronics, 10 (2021), 381. https://doi.org/10.3390/electronics10040381 doi: 10.3390/electronics10040381
[9]	S. Hosseini, M. Azizi, The hybrid technique for DDoS detection with supervised learning algorithms, Comput. Net., 158 (2019), 35–45. https://doi.org/10.1016/j.comnet.2019.04.027 doi: 10.1016/j.comnet.2019.04.027
[10]	L. Huraj, M. Šimon, T. Horák, Resistance of IoT sensors against DDoS attack in smart home environment, Sensors, 20 (2020), 1–23. https://doi.org/10.3390/s20185298 doi: 10.3390/s20185298
[11]	F. Hussain, S. G. Abbas, M. Husnain, U. U. Fayyaz, F. Shahzad, G. A. Shah, IoT DoS and DDoS attack detection using ResNet, in 2020 IEEE 23rd International Multitopic Conference (INMIC), IEEE, 2020. https://doi.org/10.1109/INMIC50486.2020.9318216
[12]	M. Idhammad, K. Afdel, M. Belouch, Detection system of HTTP DDoS attacks in a Cloud environment based on Information Theoretic Entropy and Random Forest, Secur. Commun. Net., 2018 (2018), 1–13. https://doi.org/10.1155/2018/1263123 doi: 10.1155/2018/1263123
[13]	Y. Jung, Hybrid-aware model for senior wellness service in smart home, Sensors, 17 (2017). https://doi.org/10.3390/s17051182 doi: 10.3390/s17051182
[14]	A. Koay, A. Chen, I. Welch, W. K. Seah, A new multi classifier system using entropy-based features in DDoS attack detection, in 2018 International Conference on Information Networking (ICOIN), (2018), 162–167. https://doi.org/10.1109/ICOIN.2018.8343104
[15]	M. A. Lawal, R. A. Shaikh, S. R. Hassan, A DDoS attack mitigation framework for IoT networks using fog computing, Procedia Comput. Sci., 182 (2021), 13–20. https://doi.org/10.1016/j.procs.2021.02.003 doi: 10.1016/j.procs.2021.02.003
[16]	F. S. d. Lima Filho, F. A. Silveira, A. de Medeiros Brito Junior, G. Vargas-Solar, L. F. Silveira, Smart detection: an online approach for dos/ddos attack detection using machine learning, Secur. Commun. Net., 2019.
[17]	L. Liu, E. Stroulia, I. Nikolaidis, A. Miguel-Cruz, A. Rios Rincon, Smart homes and home health monitoring technologies for older adults: A systematic review, Int. J. Med. Inf., 91 (2016), 44–59. https://doi.org/10.1016/j.ijmedinf.2016.04.007 doi: 10.1016/j.ijmedinf.2016.04.007
[18]	C. D. McDermott, F. Majdani, A. V. Petrovski, Botnet detection in the Internet of Things using deep learning approaches, in 2018 International Joint Conference on Neural Networks (IJCNN), (2018), 1–8. http://dx.doi.org/10.1109/IJCNN.2018.8489489
[19]	Y. Meidan, M. Bohadana, Y. Mathov, Y. Mirsky, A. Shabtai, D. Breitenbacher, et al., N-baiot—network-based detection of Iot botnet attacks using deep autoencoders, IEEE Pervas. Comput., 17 (2018), 12–22. http://dx.doi.org/10.1109/MPRV.2018.03367731 doi: 10.1109/MPRV.2018.03367731
[20]	A. Mishra, N. Gupta, B. B. Gupta, Defensive mechanism against DDoS attack based on feature selection and multi-classifier algorithms, Telecommun. Sys., 82 (2023), 229–244. https://doi.org/10.1007/s11235-022-00981-4 doi: 10.1007/s11235-022-00981-4
[21]	L. Nauha, N. S. Keränen, M. Kangas, T. Jämsä, J. Reponen, Assistive technologies at home for people with a memory disorder, Dementia, 17 (2018), 909–923. https://doi.org/10.1177/1471301216674816 doi: 10.1177/1471301216674816
[22]	N. Pandey, P. K. Mishra, Taxonomy of DDoS attacks and their defense mechanisms in IoT, J. Sci. Res., 65 (2021), 197–207.
[23]	R. Paudel, T. Muncy, W. Eberle, Detecting DoS attack in Smart Home IoT devices using a graph-based approach, in 2019 IEEE International Conference on Big Data (Big Data), (2019), 5249–5258. https://doi.org/10.1109/BigData47090.2019.9006156
[24]	M. S. E. Shahabadi, H. Tabrizchi, M. K. Rafsanjani, B. Gupta, F. Palmieri, A combination of clustering-based under-sampling with ensemble methods for solving imbalanced class problem in intelligent systems, Technol. Forecast. Soc. Change, 169 (2021), 120796. https://doi.org/10.1016/j.techfore.2021.120796 doi: 10.1016/j.techfore.2021.120796
[25]	I. Sharafaldin, A. H. Lashkari, S. Hakak, A. A. Ghorbani, Developing realistic Distributed Denial of Service (DDoS) attack dataset and taxonomy, in 2019 International Carnahan Conference on Security Technology (ICCST), IEEE, (2019), 1–8. https://doi.org/10.1109/CCST.2019.8888419
[26]	D. H. Summerville, K. M. Zach, Y. Chen, Ultra-lightweight deep packet anomaly detection for Internet of things devices, in 2015 IEEE 34th international performance computing and communications conference (IPCCC), IEEE, (2015), 1–8. https://doi.org/10.1109/PCCC.2015.7410342
[27]	R. Turjamaa, A. Pehkonen, M. Kangasniemi, How smart homes are used to support older people: an integrative review, Int. J. Older People Nurs., 14 (2019), 1–15. https://doi.org/10.1111/opn.12260 doi: 10.1111/opn.12260
[28]	D. Uckelmann, A definition approach to smart logistics, in International Conference on Next Generation Wired/Wireless Networking, Springer, (2008), 273–284.
[29]	A. Uprety, D. B. Rawat, Reinforcement learning for IoT security: a comprehensive survey, IEEE Int. Thing. J., 4662 (2020), 1–14. https://doi.org/10.1109/JIOT.2020.3040957 doi: 10.1109/JIOT.2020.3040957

This article has been cited by:

1.	B. Sathish, T. P. Anithaashri, 2024, 3193, 0094-243X, 020195, 10.1063/5.0233252
2.	Ali Mohammad Norouzzadeh Gilmolk, Mohammad Reza Aref, Lightweight Image Encryption Using a Novel Chaotic Technique for the Safe Internet of Things, 2024, 17, 1875-6883, 10.1007/s44196-024-00535-3
3.	Jong Hyuk Park, Editorial: Artificial Intelligence-based Security Applications and Services for Smart Cities, 2024, 21, 1551-0018, 7012, 10.3934/mbe.2024307
4.	Yiqin Bao, Qiang Zhao, Jie Sun, Wenbin Xu, Hongbing Lu, An edge cloud and Fibonacci-Diffie-Hellman encryption scheme for secure printer data transmission, 2023, 21, 1551-0018, 96, 10.3934/mbe.2024005
5.	P.S. Akshatha, S.M. Dilip Kumar, MQTT and blockchain sharding: An approach to user-controlled data access with improved security and efficiency, 2023, 4, 20967209, 100158, 10.1016/j.bcra.2023.100158

Reader Comments

Your name:*

Email:*
© 2023 the Author(s), licensee AIMS Press. This is an open access article distributed under the terms of the Creative Commons Attribution License (http://creativecommons.org/licenses/by/4.0)

通讯作者: 陈斌, bchen63@163.com

1.
沈阳化工大学材料科学与工程学院沈阳 110142

Networks and Heterogeneous Media

1.2 1.8

Metrics

Article views(3860) PDF downloads(555) Cited by(6)

Preview PDF

Download XML

Export Citation

Article outline

Show full outline

Figures and Tables

Figures(3) / Tables(9)

Networks and Heterogeneous Media

Detection of DDoS attack in IoT traffic using ensemble machine learning techniques

Related Papers:

Abstract

1. Introduction

2. Related research

2.1. MQTT protocol

2.2. Fibonacci matrix

2.3. DH Encryption algorithm

2.4. Blockchain technology

3. Lightweight fuzzy decision blockchain scheme

3.1. Lightweight fuzzy decision blockchain scheme architecture

3.2. DH-FIB fuzzy decision encryption algorithm

3.3. LF-BC fuzzy decision blockchain and MQTT frame

3.4. F-PBFT consensus algorithm

3.5. Implementation of MQTT communication

3.6. Implementation Process of LF-BC blockchain scheme

4. Testing and comparison

4.1. Case realization

4.2. Safety performance analysis

4.3. Fault-tolerance performance analysis

4.4. Data transmission time overhead comparison

4.5. Performance index comparison

5. Conclusions and future work

Acknowledgments

Conflict of interest

References

This article has been cited by:

Reader Comments

通讯作者: 陈斌, bchen63@163.com

Metrics

Figures and Tables

Other Articles By Authors

Catalog

Networks and Heterogeneous Media

Detection of DDoS attack in IoT traffic using ensemble machine learning techniques

Related Papers:

Abstract

1. Introduction

2. Related research

2.1. MQTT protocol

2.2. Fibonacci matrix

2.3. DH Encryption algorithm

2.4. Blockchain technology

3. Lightweight fuzzy decision blockchain scheme

3.1. Lightweight fuzzy decision blockchain scheme architecture

3.2. DH-FIB fuzzy decision encryption algorithm

3.3. LF-BC fuzzy decision blockchain and MQTT frame

3.4. F-PBFT consensus algorithm

3.5. Implementation of MQTT communication

3.6. Implementation Process of LF-BC blockchain scheme

4. Testing and comparison

4.1. Case realization

4.2. Safety performance analysis

4.3. Fault-tolerance performance analysis

4.4. Data transmission time overhead comparison

4.5. Performance index comparison

5. Conclusions and future work

Acknowledgments

Conflict of interest

References

This article has been cited by:

Reader Comments

通讯作者: 陈斌, bchen63@163.com

Metrics

Figures and Tables

Other Articles By Authors

Related pages

Tools

Export File

Citation

Format

Content

Catalog