Embedding Tree-Based Intrusion Detection System in Smart Thermostats for Enhanced IoT Security

Abbas Javed; Muhammad Naeem Awais; Ayyaz-ul-Haq Qureshi; Muhammad Jawad; Jehangir Arshad; Hadi Larijani

doi:10.3390/s24227320

Sensors (Nov 2024)

Embedding Tree-Based Intrusion Detection System in Smart Thermostats for Enhanced IoT Security

Abbas Javed,
Muhammad Naeem Awais,
Ayyaz-ul-Haq Qureshi,
Muhammad Jawad,
Jehangir Arshad,
Hadi Larijani

Affiliations

Abbas Javed: Department of Electrical and Computer Engineering, COMSATS University Islamabad, Lahore Campus, Lahore 54000, Pakistan
Muhammad Naeem Awais: Department of Electrical and Computer Engineering, COMSATS University Islamabad, Lahore Campus, Lahore 54000, Pakistan
Ayyaz-ul-Haq Qureshi: Department of Cyber Security and Networks, School of Computing, Engineering and Built Environment, Glasgow Caledonian University, Glasgow G4 0BA, UK
Muhammad Jawad: Department of Electrical and Computer Engineering, COMSATS University Islamabad, Lahore Campus, Lahore 54000, Pakistan
Jehangir Arshad: Department of Electrical and Computer Engineering, COMSATS University Islamabad, Lahore Campus, Lahore 54000, Pakistan
Hadi Larijani: SMART Technology Research Centre, Department of Cyber Security and Networks, School of Computing, Engineering and Built Environment, Glasgow Caledonian University, Glasgow G4 0BA, UK

DOI: https://doi.org/10.3390/s24227320
Journal volume & issue: Vol. 24, no. 22
p. 7320

Abstract

Read online

IoT devices with limited resources, and in the absence of gateways, become vulnerable to various attacks, such as denial of service (DoS) and man-in-the-middle (MITM) attacks. Intrusion detection systems (IDS) are designed to detect and respond to these threats in IoT environments. While machine learning-based IDS have typically been deployed at the edge (gateways) or in the cloud, in the absence of gateways, the IDS must be embedded within the sensor nodes themselves. Available datasets mainly contain features extracted from network traffic at the edge (e.g., Raspberry Pi/computer) or cloud servers. We developed a unique dataset, named as Intrusion Detection in the Smart Homes (IDSH) dataset, which is based on features retrievable from microcontroller-based IoT devices. In this work, a Tree-based IDS is embedded into a smart thermostat for real-time intrusion detection. The results demonstrated that the IDS achieved an accuracy of 98.71% for binary classification with an inference time of 276 microseconds, and an accuracy of 97.51% for multi-classification with an inference time of 273 microseconds. Real-time testing showed that the smart thermostat is capable of detecting DoS and MITM attacks without relying on a gateway or cloud.

Published in Sensors

ISSN: 1424-8220 (Online)
Publisher: MDPI AG
Country of publisher: Switzerland
LCC subjects: Technology: Chemical technology
Website: http://www.mdpi.com/journal/sensors

About the journal

Abstract

Keywords