D2Gen: A Decentralized Device Genome Based Integrity Verification Mechanism for Collaborative Intrusion Detection Systems

Author First name, Last name, Institution

Imran Makhdoom, National University of Sciences and Technology; University of Technology Sydney
Kadhim Hayawi, Zayed University
Mohammed Kaosar, Murdoch University
Sujith Samuel Mathew, Zayed University
Pin-Han Ho, University of Waterloo

ORCID Identifiers

0000-0002-6205-5897

0000-0002-8092-4590

0000-0003-1101-3264

0000-0001-7648-7458

0000-0002-0717-1481

Document Type

Article

Source of Publication

IEEE Access

Publication Date

10-4-2021

Abstract

Collaborative Intrusion Detection Systems are considered an effective defense mechanism for large, intricate, and multilayered Industrial Internet of Things against many cyberattacks. However, while a Collaborative Intrusion Detection System successfully detects and prevents various attacks, it is possible that an inside attacker performs a malicious act and compromises an Intrusion Detection System node. A compromised node can inflict considerable damage on the whole collaborative network. For instance, when a malicious node gives a false alert of an attack, the other nodes will unnecessarily increase their security and close all of their services, thus, degrading the system’s performance. On the contrary, if the spurious node approves malicious traffic into the system, the other nodes would also be compromised. Therefore, to detect a compromised node in the network, this article introduces a device integrity check mechanism based on “Digital Genome.” In medical science, a genome refers to a set that contains all of the information needed to build and maintain an organism. Based on the same concept, the digital genome is computed over a device’s vital hardware, software, and other components. Hence, if an attacker makes any change in a node’s hardware and software components, the digital genome will change, and the compromised node will be easily detected. It is envisaged that the proposed integrity attestation protocol can be used in diverse Internet of Things and other information technology applications to ensure the legitimate operation of end devices. This study also proffers a comprehensive security and performance analysis of the proposed framework.

DOI Link

10.1109/access.2021.3117938

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Volume

9

Disciplines

Computer Sciences

Keywords

Protocols, Intrusion detection, Codes, Collaboration, Logic gates, Hardware, Genomics

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.

Recommended Citation

Makhdoom, Imran; Hayawi, Kadhim; Kaosar, Mohammed; Mathew, Sujith Samuel; and Ho, Pin-Han, "D2Gen: A Decentralized Device Genome Based Integrity Verification Mechanism for Collaborative Intrusion Detection Systems" (2021). All Works. 4612.
https://zuscholars.zu.ac.ae/works/4612

Indexed in Scopus

no

Open Access

yes

Open Access Type

Gold: This publication is openly available in an open access journal/series