Visible to the public Modeling and evaluation of a new IoT security system for mitigating DoS attacks to the MQTT broker

TitleModeling and evaluation of a new IoT security system for mitigating DoS attacks to the MQTT broker
Publication TypeConference Paper
Year of Publication2019
AuthorsPotrino, Giuseppe, de Rango, Floriano, Santamaria, Amilcare Francesco
Conference Name2019 IEEE Wireless Communications and Networking Conference (WCNC)
Keywordsactuator security, actuators, composability, computer network security, Denial of Service attacks, DoS, DoS attacks, Floods, generic IoT system, high interaction, high mobility, host Intrusion Detection System, human activities, Human Behavior, human control, IDS, Internet of Things, Internet of Things phenomenon, IoT, IoT security system, low power devices, Message Queue Telemetry Transport protocol, Metrics, Monitoring, MQTT, MQTT broker, Proposals, Protocols, pubcrawl, quality of service, queueing theory, Resiliency, security, security over IoT, structured activities, telemetry, transport protocols
AbstractIn recent years, technology use has assumed an important role in the support of human activities. Intellectual work has become the main preferred human activity, while structured activities are going to become ever more automatized for increasing their efficiency. For this reason, we assist to the diffusion of ever more innovative devices able to face new emergent problems. These devices can interact with the environment and each other autonomously, taking decisions even without human control. This is the Internet of Things (IoT) phenomenon, favored by low cost, high mobility, high interaction and low power devices. This spread of devices has become uncontrolled, but security in this context continues to increase slowly. The purpose of this work is to model and evaluate a new IoT security system. The context is based on a generic IoT system in the presence of lightweight actuator and sensor nodes exchanging messages through Message Queue Telemetry Transport (MQTT) protocol. This work aims to increase the security of this protocol at application level, particularly mitigating Denial of Service (DoS) attacks. The system is based on the use of a host Intrusion Detection System (IDS) which applies a threshold based packet discarding policy to the different topics defined through MQTT.
Citation Keypotrino_modeling_2019