Intrusion Detection and Prevention with Internet-integrated CoAP Sensing Applications

Authors

Abstract

End-to-end communications between Internet devices and Internet-integrated constrained wireless sensing platforms promise to contribute to the enabling of many of the envisioned IoT applications. In this context, communication technologies such as 6LoWPAN and CoAP are currently materializing this vision, and we may fairly observe that security in the presence of such devices, and particularly in the context of end-to-end communications with Internet-integrated WSN, will be of prime importance. Considering the constraints of sensing devices in terms of critical resources such as energy, memory and computational capability, it is clear that Internet-integrated WSN will need security against various types of attacks, particularly those originated at devices without the constraints of WSN sensors (e.g. Internet hosts). Existing encryption strategies for communications in IoT environments are unable to protect the WSN for Denial of Service (DoS) and other intrusion attacks, particularly in what regards the usage of CoAP to enable application-layer communications. Therefore, anomaly and intrusion detection will play a major role in the enabling of IoT applications in various areas. In this article, we approach a framework to cope with intrusion detection and reaction in CoAP Internet- integrated WSN, and in the context of this framework we implement and evaluate various complementary detection and prevention mechanisms. Our proposal is evaluated experimentally and ours is, as far as our knowledge goes, the first proposal with the above-mentioned goals.

Keywords

Internet-integrated sensor networks, CoAP, 6LoWPAN, IoT, intrusion detection

Subject

Internet of Things, security, intrusion detection

Related Project

MobiWise: from mobile sensing to mobility advising

Conference

3rd International Conference on Internet of Things, Big Data and Security, March 2018

DOI