Yadav, Poonam orcid.org/0000-0003-0169-0704, Feraudo, Angelo, Arief, Budi et al. (2 more authors) (2020) Position paper:A systematic framework for categorising IoT device fingerprinting mechanisms. In: AIChallengeIoT '20: Proceedings of the 2nd International Workshop on Challenges in Artificial Intelligence and Machine Learning for Internet of Things. Workshop on Challenges in Artificial Intelligence and Machine Learning for Internet of Things, 16 Nov 2020 ACM AIChallengeIoT (Sensys 2020) . ACM , 62–68.
Abstract
The popularity of the Internet of Things (IoT) devices makes it increasingly important to be able to fingerprint them, for example in order to detect if there are misbehaving or even malicious IoT devices in one's network. However, there are many challenges faced in the task of fingerprinting IoT devices, mainly due to the huge variety of the devices involved. At the same time, the task can potentially be improved by applying machine learning techniques for better accuracy and efficiency. The aim of this paper is to provide a systematic categorisation of machine learning augmented techniques that can be used for fingerprinting IoT devices. This can serve as a baseline for comparing various IoT fingerprinting mechanisms, so that network administrators can choose one or more mechanisms that are appropriate for monitoring and maintaining their network. We carried out an extensive literature review of existing papers on fingerprinting IoT devices -- paying close attention to those with machine learning features. This is followed by an extraction of important and comparable features among the mechanisms outlined in those papers. As a result, we came up with a key set of terminologies that are relevant both in the fingerprinting context and in the IoT domain. This enabled us to construct a framework called IDWork, which can be used for categorising existing IoT fingerprinting mechanisms in a way that will facilitate a coherent and fair comparison of these mechanisms. We found that the majority of the IoT fingerprinting mechanisms take a passive approach -- mainly through network sniffing -- instead of being intrusive and interactive with the device of interest. Additionally, a significant number of the surveyed mechanisms employ both static and dynamic approaches, in order to benefit from complementary features that can be more robust against certain attacks such as spoofing and replay attacks.
Metadata
Item Type: | Proceedings Paper |
---|---|
Authors/Creators: |
|
Copyright, Publisher and Additional Information: | 7 pages, 2 figures, Accepted in ACM/IEEE AIChallengeIoT 2020 |
Keywords: | Internet of things (IoT),device fingerprinting,security,authentication,device identification,network traffic analysis,machine learning,survey |
Dates: |
|
Institution: | The University of York |
Academic Units: | The University of York > Faculty of Sciences (York) > Computer Science (York) |
Depositing User: | Pure (York) |
Date Deposited: | 07 Jan 2021 10:50 |
Last Modified: | 03 Apr 2025 04:26 |
Published Version: | https://doi.org/10.1145/3417313.3429384 |
Status: | Published |
Publisher: | ACM |
Series Name: | ACM AIChallengeIoT (Sensys 2020) |
Identification Number: | 10.1145/3417313.3429384 |
Related URLs: | |
Open Archives Initiative ID (OAI ID): | oai:eprints.whiterose.ac.uk:169799 |