2022 International Conference on Futuristic Technologies (INCOFT)
Karnataka, India. Nov 25-27, 2022
Implementation of Deep Learning Techniques for
Secure IoT Networks
Rohini Mahajan,
Assistant Professor,
2022 International Conference on Futuristic Technologies (INCOFT) | 978-1-6654-5046-1/22/$31.00 ©2022 IEEE | DOI: 10.1109/INCOFT55651.2022.10094474
Department of Computer Science & Engineering,
Chandigarh Engineering College,
Jhanjeri,
[email protected]
[email protected]
Abstract - The medical industry, the military, and the
power grid are just a few examples of businesses that may
benefit greatly from using IoT solutions. The safety of an
Internet of Things network is less important than the safety of
the underlying computer and communications systems.
However, IoT networks are vulnerable to a variety of threats
because of the scarcity of available resources and
computational power. Protecting the Internet of Things (IoT)
network from malicious assaults necessitates the creation and
use of effective security measures, such as an intrusion
detection system. In this paper, we provide a unique method
for categorising the data flowing through an Internet of Things
(IoT) network by using Deep Neural Networks (DNNs)
educated on deep learning data to spot outliers. We create
standard features from field-collected packet-level data using a
recently released IoT dataset. To classify potential threats to
Internet of Things (IoT) devices, such as denial-of-service
(DoS), distributed denial-of-service (DDoS), reconnaissance,
and information theft, we create a feed-forward neural
networks model. On the sanitised dataset, the tested approach
exhibits high classification accuracy.
Keywords – IoT, Security, Deep Learning, DDoS, Attackers.
I. INTRODUCTION
The Mining Industry's Blockchain Strategy for
Increasing Online Safety, Availability, and Data Integrity in
the IoT: Problems and Prospects. The fast evolution of
Internet-enabled gadgets and related communication
technologies has led to the emergence of the "Internet of
Things" (IoT). Although the IoT's numerous features and
benefits inspire innovative approaches to problems, they also
present certain dangers to users. Knowing the weaknesses of
these technologies is crucial for avoiding their misuse. There
are several known and undisclosed security vulnerabilities
with the protocol-level approach of Message Queuing
Telemetry Transfer (MQTT). A more efficient agronomic
big data ant colony optimization algorithm (BigDataACO) is
presented to round out the multispectral information found in
agricultural big data for use in feature sets and decision-
making. Our goal is to increase the efficiency with which
agricultural land is put to use by analysing and using
multisource, heterogeneous big data. Additionally, the
problem of combining information from many sources was
tackled and handled.
Connecting Space, Air, Grounds, and Sea (SAGS)
networks is becoming more important to reliably offer
automated services to consumers and companies as the
Internet of Things (IoT) evolves. However, networks'
978-1-6654-5046-1/22/$31.00 ©2022 IEEE
Authorized licensed use limited to: Consortium - Algeria (CERIST). Downloaded on April 18,2023 at 22:56:45 UTC from IEEE Xplore. Restrictions apply.
Dushyant Singh
Assistant Professor,
Department of Computer Science Engineering,
Vivekananda Global University,
Jaipur, India.
security and privacy might be jeopardised if IoT devices
aren't adequately safeguarded. A formidable security
solution, TI refers to artificially intelligent technologies that
can automatically safeguard SAGS networks. On this
research, we provide a novel method for threat identification
(TI) that is grounded in deep learning techniques and is
capable of detecting cyber threats emanating from SAGS
infrastructure.
In view of the ever-increasing demands on top-notch
healthcare and the ever-increasing costs of treatment, a
growing number of people are examining the possibility of
adopting ubiquitous medicine as a technology solution to the
world's healthcare concerns. Most notably, the Internet of
Medical Things has emerged as a result of cutting-edge
innovation in IoT devices (IoMT). Security and privacy
issues are typically overlooked, despite the fact that cheap
and widely distributed sensors have the ability to change the
present reactive treatment into preventive care. Connections
between medical equipment and amongst themselves must
be very secure because of the sensitive nature of the health
information they gather and handle. Because of their limited
computing power, however, only a subset of security
protocols may be used in miniaturised IoT devices. Further,
the widespread use of IoMT devices makes it difficult to
monitor and guarantee the security of these networks. That is
a significant hurdle for IoMT-based medicinal research.
IoT, an abbreviation for "Internet of Things," is a system
of interconnected gadgets that can share and gather
information in real time over the internet. This idea is also
often referred to as a "virtual of objects." Internet of
Everything technologies such as wireless sensor networks
(WSN) and radio frequency identification (RFID) have the
potential to improve many areas of society (RFID).
Miniature, high-tech devices are crucial to the functioning of
the IoT. There is a vast variety of devices in this category,
each with its own set of pros and downsides. Given that the
great majority of currently available web technologies and
protocols were not built to enable IoT, security is a
significant issue for the Internet of Things. On the other
hand, this was framed as a cornucopia of untapped
opportunities. Numerous studies have examined the IoT's
unanswered questions and security holes, but the full scope
of the environment's susceptibility has yet to be investigated.
In this paper, we use a three-layer neural network of self-
encoder to construct a hierarchical encroachment security
detection model and investigate the practical use of
computational intelligence denoisingautoencoder (DAE) in
1
the context of IoT fusion security. A stacked DAE
supporting vector machine is the name for this concept
(SDAE-SVM). In this research, we want to learn more about
potential applications of deep learning denoisingautoencoder
(DAE) in the field. Dimensional reductions were obtained by
supervised training, and then iterative adjustments were
made to each level, and now the resultant data have been
gathered. In this study, common deep learning methods are
presented and compared to a reference prototype via
computation. These methods include stacked noise
autoencoder (SNAE), stacked autoencoder (SAE), stacked
contractive autoencoder (SCAE), stacked sparse autoencoder
(SSAE), and convolutional (DBN). The system's setup and
the use of IoT devices have allowed it to grow beyond its
original scope, which has increased its ability to
communicate, analyse, and be controlled. To survive and
thrive in today's ultracompetitive economic climate, almost
every industry and company that operations anywhere in the
world will soon be wired with a system of Internet of Things
(IoT) devices. While technological advancements have
reduced certain threats, they have not eliminated them
entirely. The same is true for IoT-enabled systems, where
several security concerns have emerged and pose threats to
the reliability of the system's ongoing functioning.Related
Work
According to the results, a four-layer network generator
produces the best accuracy rate (Ac) for the model (97.83%)
and the lowest untrue rate (Fn) (1.27%) and false-positive
rate (Fp) (3.21%). The model's performance is quantified by
its accuracy rate (Ac). The model's quality rises to roughly
98% when there are around 110 vertices in the first hidden
layer. With values of 98.12%, 3.21%, and 1.27%,
respectively, for Ac, Fn, and Fp, this model outperforms the
competition when large amounts of data are reduced. This
was developed specifically for this study, and it served as the
basis for the model. Compared to results obtained using other
deep learning methods, the recognition rate, Ac, error rate,
and separation factor all show promising results. Across
several datasets, the female's detection performance, Ac,
margin of error, and amount of defects are consistently
higher than those attained by traditional deep learning
algorithms. In conclusion, the detect load can be reduced, the
sensing effect can be improved, and the operation can be
made safer and more reliable when deep learning SDAE is
used to IoT alignment intrusion risk detection [11]. This
article presents a comprehensive analysis of the many
security issues plaguing IoT-enabled devices and the
difficulties these issues create. Also, both technological and
administrative suggestions for countermeasures are included
in the article. Finally, the paper concludes with a discussion
of potential future research directions for the practitioner of
this discipline [12]. The present and future eras are going to
undergo an unexpected shift transformation from defunct
systems into a pervasive p2p empowered entity that can
communicate with one other and generate data from which
useful insights may be drawn. The term "Internet of
everything" describes a hypothetical future in which all
networks are interconnected globally (IOT). The Internet of
Things is crucial in improving governmental efficiency,
easing communication, and many other spheres of life.
Therefore, a large number of people will be relying on it in
the near future, therefore its security and information
integrity must be rock solid. Using the bitcoin strategy of
distributing the programme among several cluster nodes, we
Authorized licensed use limited to: Consortium - Algeria (CERIST). Downloaded on April 18,2023 at 22:56:45 UTC from IEEE Xplore. Restrictions apply.
can now increase security. Once the IoT is working, these
cluster pieces may be deployed throughout the hosts. In this
setup, a computer is known as a host if it is used to break
down a larger work into smaller chunks. Each packet in this
example consists of data and an associated address. The head
of the packet, also called as the addresses part of the packet,
contains the addresses of the other cluster along the drain
machine's route. As the internet of things relies on a
decentralised design, the anonymity of package information
will be jeopardised if we use the conventional approach to
network security. To put this concept into action, we need to
implement a decentralised system made up of many
individual devices that are all connected to the internet. Each
of these gadgets should operate as a sink machine, and a host
machine is required for sink management. Our planned
organisational structure is based on a hierarchical chain of
command, and all of our information is stored on the cloud.
This framework is also used to coordinate bitcoin
transactions and device-to-device data transfers for increased
trustworthiness. To assure a suburban-like topology, our
architecture takes use of a feature called distributed trust.
[13] B. Mishra and N. Padhy (2020). Using Blockchain
Technology in Mining: Challenges and Solutions The
purpose of [14] is to fix the problems with the IoT's security,
dependability, and data integrity. In order to highlight the
shortcomings of the current ideas, this review article will
examine and classify the many security approaches that are
now in use. The goal is to analyse and classify the various
forms of protection currently in use. Summary of what we'll
talk about IoT MQTT protocol concepts, IIoT MQTT
protocol common security solutions, and IIIoT MQTT
protocol security levels. In conclusion, investigators may
utilise the values provided in this article to formulate an
effective security approach for a variety of IoT-based use
cases [15]. Swarm intelligence is a software that mimics the
complex problem of crowds in nature by having its users
work together. The procedure is resilient, can be parallelized,
and does not depend on any one specific problem.
Implementation strategies for the agricultural big data fusion
problem are studied, along with its description, idea, and
methodology. The limitations of the large data fusion
modelling approach are then discussed. This study's last
section delves into the massive data fusion approach used by
insect colonies, as well as the code editor and its key
components. Results show that the obtained data may be
used to verify the improved BigDataACO approach. The
upgraded technique [16] established in this work greatly
decreases the ambiguity associated with data fusion when
compared to K-means, D-S evidence theory, and the Bayes
method. The novel technique consists of three parts: a deep
patterns extraction stage, a TI-driven recognition stage, and a
TI-attack type identification stage. While the unit is designed
to uncover dormant features contained in IoT, its output is
used as input by the TI-driven identification. TI-attack type
identification is used to classify the damaging actions that
make up the different forms of attacks; this information is
then utilised to help in problem solving. TON-IoT and N-
BAIOT, two distinct sets of data, are used to evaluate the
proposed approach. In terms of detection and false alarm
rates, the experimental findings show that the approach
excels in comparison to other, similar methods [17]. The
Internet of Things, or IoT, is a vast, adaptable global network
architecture that enables virtualized items to communicate
with one another and with any object, service, or person
across the World Wide Web at any time. The article provides
a review, analysis, and high-level summary of an IoT
ecosystem. Definitions, components, features, architectures,
technologies, application areas, and an examination of
security problems and challenges related to the Internet of
Things (IoT) make up this ecosystem [18]. The purpose of
this research was to investigate the current state of IoMT
privacy and security, as well as to identify the areas where
more work is needed and the most promising avenues for
future investigation. This gives you a quick rundown of the
methods that are currently state-of-the-art [19]. This paper
provides a brief overview of the motivation behind IoT, a
description of the protected IoT nicely textured structure, IoT
Noted, a discussion of the security problems with multiple
attacks within each layer of the IoT, and a look at the
limitations of the traditional approaches to having security
remedies [20].
II. PROPOSED WORK
In this section, we give a high-level overview of the
framework for IoT networks' intrusion detection. Figure 1
depicts the framework, which primarily consists of the four
phases of feature extraction, feature preprocessing, training,
and classification.
Prepare Dataset
Preprocessing
Feature Extraction
Deep Classification
Normal Malicious
Fig. 1. Deep Learning based IDS in IoT
An in-depth analysis of each stage is provided below.
First, we get raw traffic data from the network analyzer.
Thereafter, we extract the necessary information from each
packet. Each extracted field is the name of a feature. Here,
we utilise the field data from each individual packet rather
than relying on aggregated packets to infer features.
Therefore, we aim to capture general characteristics of traffic
rather than designing attack-oriented features that are tailored
to identify specific attack behaviours. In particular, we focus
on the frame, IPv4/IPv6, and TCP/UDP fields in IP packets'
headers.
Authorized licensed use limited to: Consortium - Algeria (CERIST). Downloaded on April 18,2023 at 22:56:45 UTC from IEEE Xplore. Restrictions apply.
We combine, drop, and encode the column values in
feature preparation once the obtained fields data has been
preprocessed as well as stored in arrays. Training traffic
(used during the training stage) and testing traffic (used
during the testing phase) were both generated using the
processed data (used in the classification phase). Each
malicious and benign packet in both training and testing
traffic is labelled, and each damaging packet is labelled with
the kind of attack it is part of. All of the labels in the test data
are utilised for is evaluating the accuracy of the predictions.
Third, we feed the network the processed data (arrays)
from the training traffic in order to educate it. In order to
categorise new incoming traffic, a neural network model has
been developed. The classifier has the potential to divide
data into both binary and many categories.
Part 4: The Sorting Process The processed data from the
testing traffic is sent into the classifier, which then assigns
normal/malicious labels to each packet. The classifier places
the malicious packet into the attack category that best
matches its features for the purpose of multi-classification.
Here is an example of how the suggested DNN may be
used.
In a nutshell, the input layer is made from : The network
receives information from these neurons. Here, we lay out all
of the possible paths we may take, =r 1,r 2,...,r u.
In order to extract features from the input flow, a deep
neural network with several hidden layers is used (up to L).
Apply a crossover operator to the primary input pathways.
Through a mechanism called crossover, geneticists are able
to create previously unthinkable permutations of ancestry-
based pathways. The information acquired through feature
extraction is then used to detect infiltration at the topmost
layer.
III. EXPERIMENTAL RESULTS & DISCUSSION
A. Simulation setup
A simulation of the intended network has been
implemented in the network simulator version 3.26. (ns-
3.26). Various network simulations are possible with the help
of the event-based ns-3.26 simulation tool. To begin, ns-3.26
is present on the machine running Ubuntu 14.04. The
configuration of the network is then adjusted such that it best
accommodates our studies. Initially, the algorithms are
written in C++, but once they're ready to be executed, they're
transferred to Python. Before beginning the experiment, we
used ns3.26 to determine the node positions, initial energy,
and n value. With everything set up, we can run the whole
simulation and see what happens.
TABLE I. DATA GENERATED BY SIMULATION
Parameter Values
Number of flows 10000
Normal 350
DDoS 150
Man in the Middle 200
Intrusion 300
B. Comparative analysis
Naïve Bayes Random Forest ANN DNN
We can see that the accuracy, precision, recall, and F1
120
score for classifying genuine traffic and malicious traffic for
each DDoS/DoS subcategory is all above 0.999, indicating
minimal FP and FN predictions. In particular, the extracted 100
dataset at hand detects Distributed Denial of Service (DDoS)
assaults using HTTP/UDP with a perfect 100% success rate.
80
Based on the prediction of DoS through UDP assaults, 222
out of 194480 (0.1%) malicious packets were incorrectly

Precision (%)
classified as benign. It's possible that this is due to the fact 60
that certain ICMP packets disguise a UDP packet within the
ICMP payload; this UDP packet might be malicious or
40
benign, depending on the context, and this could throw off
the classifier's general characteristics.
20

Accuracy 0
1 2 3 4 5 6
100 Iteration
Fig. 4. Analysis on Precision
95

90 Naïve Bayes Random Forest ANN DNN

120
85
100
80
80
75
Recall (%)

Naïve Random ANN DNN 60

Bayes Forest
40
Fig. 2. Analysis on Accuracy

20

Naïve Bayes Random Forest ANN DNN 0

1 2 3 4 5 6
Iteration
120
Fig. 5. Analysis on Recall

100
Naïve Bayes Random Forest ANN DNN
80
Accuracy (%)

120

60 100

40 80
F-score (%)

20 60

0 40
1 2 3 4 5 6
Iteration 20

Fig. 3. Analysis on Accuracy 0

1 2 3 4 5 6
Iteration
Fig. 6. Analysis on F-score

Authorized licensed use limited to: Consortium - Algeria (CERIST). Downloaded on April 18,2023 at 22:56:45 UTC from IEEE Xplore. Restrictions apply.

Naïve Bayes Random Forest ANN DNN
120
100
80
AUC (%)
60
40
20
0 Enabled Security Approach for Agricultural Based on Internet of
1 2 3 4 5 6
Iteration
Fig. 7. Analysis on AUC
The categorization for reconnaissance assaults likewise
achieves good precision, recall, and accuracy values, as well
as a high F1 score (all above 0.99). 1201 over 203278 (0.6%)
normal packets were categorised as malicious packets in the
prediction on service scan assaults, while 694 over 199700
(0.3%) malicious packets were classified as normal packets.
The ICMP payload may contain embedded UDP packets,
which could be benign or malicious and cause confusion for
the classifier based on existing features for assaults.
IV. CONCLUSION
Deep learning is an intelligent method that may be used
to address the intrusion detection problem in IoT networks.
After proposing a smart binary and multiclass
classification scheme using a feed-forward neural networks
model, extracting and preprocessing the field information in
individual packets as generic features, and testing its efficacy
for the recently published IoT dataset with realistic network
traffic, we have been able to demonstrate the performance of
the proposed scheme.
Results showing almost 0.99 on all assessment
parameters, including accuracy, precision, recall, and F1
score, demonstrate the classifier's ability to categorise binary
data for DDoS/DoS and reconnaissance assaults. The
classifier claimed an accuracy of 0.99 or higher for detecting
DDoS/DoS assaults in multiclass classification, while
achieving an accuracy of 0.98 when classifying normal
traffic.
Those results are significant, and they warrant more
research into the topic of Internet of Things (IoT) network
security.
Authorized licensed use limited to: Consortium - Algeria (CERIST). Downloaded on April 18,2023 at 22:56:45 UTC from IEEE Xplore. Restrictions apply.
REFERENCES
[1] Lv, Z., Qiao, L., Li, J., & Song, H.H. (2021). Deep-Learning-Enabled
Security Issues in the Internet of Things. IEEE Internet of Things
Journal, 8, 9531-9538.
[2] Poonia, A.S., Banerjee, C., Banerjee, A., & Sharma, S.K. (2020).
Security Issues in Internet of Things (IoT)-Enabled Systems: Problem
and Prospects.
[3] Mishra, B., & Padhy, N. (2020). Enhancing the Security, Reliability,
and Data Integrity Issues in the Internet of Things by Implementing
Blockchain Strategy in Mining: Challenges and Solutions.
[4] Tang, C., Wei, X., Liu, C., Jiang, H., Wu, H., & Li, Q. (2020). UAV-
Enabled Social Internet of Vehicles: Roles, Security Issues and Use
Cases. SocialSec.
[5] Hintaw, A.J., Manickam, S., Karuppayah, S., & Aboalmaaly, M.F.
(2019). A Brief Review on MQTT's Security Issues within the
Internet of Things (IoT). J. Commun., 14, 463-469.
[6] Zhang, F., & Zhang, Y. (2020). A Big Data Mining and Blockchain-
Things. Wirel. Commun. Mob. Comput., 2020, 6612972:1-6612972:8.
[7] Al-Hawawreh, M.S., Moustafa, N., Garg, S., & Hossain, M.S. (2021).
Deep Learning-Enabled Threat Intelligence Scheme in the Internet of
Things Networks. IEEE Transactions on Network Science and
Engineering, 8, 2968-2981.
[8] Pukkasenung, P. (2020). Internet of Things (IoT): A Basic Concept
and Analysis Security Issues.
[9] Sun, Y., Lo, F.P., & Lo, B.P. (2019). Security and Privacy for the
Internet of Medical Things Enabled Healthcare Systems: A
Survey. IEEE Access, 7, 183339-183355.
[10] Krishna, B.V., & Gnanasekaran, T. (2017). A systematic study of
security issues in Internet-of-Things (IoT). 2017 International
Conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud)
(I-SMAC), 107-111.
[11] Nayak, P., Kavitha, K., & Mallikarjuna Rao, C. (2019). IoT-Enabled
Agricultural System Applications, Challenges and Security
Issues. Studies in Big Data.
[12] Spathoulas, G.P., Negka, L., Pandey, P., & Katsikas, S.K. (2020).
Can Blockchain Technology Enhance Security and Privacy in the
Internet of Things?
[13] Dr.MushthaqAhammed, K. (2017). Online Transaction Security
Issues In A Digitally Enabled Business Environment.
[14] Bangare, P.S., & Patil, K.P. (2022). Security Issues and Challenges in
Internet of Things (IOT) System. 2022 2nd International Conference
on Advance Computing and Innovative Technologies in Engineering
(ICACITE), 91-94.
[15] Kumar, R., Sharad, A., Jaiswal, S.B., Singh, V.K., & Kumari, S.
(2022). Privacy and Security Issues and Challenges in 5g Enabled
Vehicular Networks.
[16] Abishu, H.N., Seid, A.M., Yacob, Y.H., Ayall, T., Sun, G., & Liu, G.
(2022). Consensus Mechanism for Blockchain-Enabled Vehicle-to-
Vehicle Energy Trading in the Internet of Electric Vehicles. IEEE
Transactions on Vehicular Technology, 71, 946-960.
[17] Alqarni, H.M., Alnahari, W., & Quasim, M.T. (2021). Internet of
Things (IoT) Security Requirements: Issues Related to Sensors. 2021
National Computing Colleges Conference (NCCC), 1-6.
[18] Singh, O., Anand, A., Agrawal, A.K., & Singh, A.K. (2022).
Electronic Health Data Security in the Internet of Things through
Watermarking: An Introduction. IEEE Internet of Things Magazine,
5, 55-58.
[19] Liu, L., & Li, Z. (2022). Permissioned blockchain and deep
reinforcement learning enabled security and energy efficient
Healthcare Internet of Things. IEEE Access, PP, 1-1.
[20] Geetha, R., Suntheya, A.K., & Srikanth, G.U. (2020). Cloud
Integrated IoT Enabled Sensor Network Security: Research Issues and
Solutions. Wireless Personal Communications, 113, 747-771.