An Intelligent Two-Phase Automated Architecture for Securing SDN-Based IoT Infrastructure

Maryam Safaeisisakht, Ching Hsien Hsu, Po Yen Hsu, Mu Yen Chen

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

The Internet of Things (IoT) will bring many opportunities in the next years. However, IoT devices have processing and power limitation. Thus, security remains one of the main challenges. Software-defined networking (SDN) helps traditional IoT infrastructure become manageable and flexible in a centralized fashion. The SDN-IoT architecture tackles the security issue of IoT networks. The proposed architecture adds a new security engine to the controller. The security engine consists of the monitoring, intelligent sub-layer, analyzing/detection engine, reaction, and config engine to automatically monitor, analyze, classify, detect, and generate a proper reaction to the possible threads in two phases. The config engine automatically rearranges the security rules and applies the set of rules as a new configuration to the devices (switches) in the data layer. The intelligent sub-layer uses AI-based feature selection (Bat Algorithm) and classification (Random Forest) algorithms to reveal the possible threats and forward its output to the analyzing/detecting engine to examine it and make the alerts. The cooperation of the intelligent sub-layer and analyzing/detection engine in the two mentioned steps help the system improve the overall system performance and false positive alerts. The proposed architecture follows new security rules based on the network status such as bandwidth minimization and traffic. All the process automatically makes by the security engine and protects the entire network from different threats and attacks.

Original languageEnglish
Title of host publication2023 IEEE 3rd International Conference on Electronic Communications, Internet of Things and Big Data, ICEIB 2023
EditorsTeen-Hang Meen
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages12-16
Number of pages5
ISBN (Electronic)9798350333862
DOIs
Publication statusPublished - 2023
Event3rd IEEE International Conference on Electronic Communications, Internet of Things and Big Data, ICEIB 2023 - Taichung, Taiwan
Duration: 2023 Apr 142023 Apr 16

Publication series

Name2023 IEEE 3rd International Conference on Electronic Communications, Internet of Things and Big Data, ICEIB 2023

Conference

Conference3rd IEEE International Conference on Electronic Communications, Internet of Things and Big Data, ICEIB 2023
Country/TerritoryTaiwan
CityTaichung
Period23-04-1423-04-16

All Science Journal Classification (ASJC) codes

  • Computer Science Applications
  • Computer Vision and Pattern Recognition
  • Information Systems
  • Artificial Intelligence
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'An Intelligent Two-Phase Automated Architecture for Securing SDN-Based IoT Infrastructure'. Together they form a unique fingerprint.

Cite this