Skip to main content
SpringerLink
Log in

Linked-Behaviors Profiling in IoT Networks Using Network Connection Graphs (NCGs)

  • Conference paper
  • First Online:
Cloud Computing and Security (ICCCS 2018)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 11067))

Included in the following conference series:

Abstract

The internet of things (IoT) network aims to connect everything from the physical world to cyber world, and has been a significant focus of research nowadays. Precisely monitoring network traffic and efficiently detecting unwanted applications is a challenging problem in IoT networks, which forces the need for a more fundamental behavioral analysis approach. Based on this observation, this paper proposes the Network Connection Graphs (NCGs) to model the social behaviors of connected devices in IoT networks, where edges defined to represent different interactions among them. Specially, focusing on exploring connected patterns and unveiling the underlying associated relationships, we employ a set of graph mining and analysis methods to select different subgraph structures, analyze correlated relationships between edges and uncover the role feature of interaction flows within IoT networks. The experiment results have demonstrated the benefits of our proposed approach for profiling linked-behaviors and to detect distinctive attacks in IoT networks.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Whitmore, A., Agarwal, A., Xu, L.D.: The Internet of Things—a survey of topics and trends. Inf. Syst. Front. 17(2), 261–274 (2015)

    Article  Google Scholar 

  2. Evans, D.: The Internet of Things: how the next evolution of the internet is changing everything. CISCO white paper, vol. 1, no. 2011, pp. 1–11 (2011)

    Google Scholar 

  3. Hodo, E., et al.: Threat analysis of IoT networks using artificial neural network intrusion detection system. In: 2016 International Symposium on Networks, Computers and Communications (ISNCC), pp. 1–6. IEEE (2016)

    Google Scholar 

  4. Team Cymru: Growing Exploitation of Small Office Routers Creating Serious Risks. https://www.team-cymru.com/ReadingRoom/Whitepapers/2013/TeamCymruSOHOPharming.pdf

  5. Vespa, L.J., Weng, N.: GPEP: graphics processing enhanced pattern-matching for high-performance deep packet inspection.” In: Internet of Things (iThings/CPSCom), 2011 International Conference on and 4th International Conference on Cyber, Physical and Social Computing, pp. 74–81. IEEE (2011)

    Google Scholar 

  6. Ke, X., Yong, C.: An improved Wu-Manber multiple patterns matching algorithm. In: 25th IEEE International Performance, Computing, and Communications Conference, IPCCC 2006, 6 pp. IEEE (2006)

    Google Scholar 

  7. Hua, N., Song, H., Lakshman, T.V.: Variable-stride multi-pattern matching for scalable deep packet inspection. In: INFOCOM 2009, pp. 415–423. IEEE (2009)

    Google Scholar 

  8. Cheung, S., et al.: The Design of GrIDS: A Graph-Based Intrusion Detection System. UCD TR-CSE-99-2 (1999)

    Google Scholar 

  9. Ellis, D., Aiken, J., McLeod, A., Keppler, D.: Graph-based worm detection on operational enterprise networks. Technical report MITRE Corporation (2006)

    Google Scholar 

  10. Karagiannis, T., Papagiannaki, K., Faloutsos, M.: BLINC: multilevel traffic classification in the dark. In: ACM SIGCOMM Computer Communication Review, vol. 35, no. 4, pp. 229–240. ACM (2005)

    Google Scholar 

  11. Asai, H., et al.: Network application profiling with traffic causality graphs. Int. J. Netw. Manage. 24(4), 289–303 (2014)

    Article  Google Scholar 

  12. Iliofotou, M., Pappu, P., Faloutsos, M., Mitzenmacher, M., Singh, S., Varghese, G.: Network monitoring using traffic dispersion graphs (TDGs). In: Proceedings of the 7th ACM SIGCOMM Conference on Internet Measurement, pp. 315–320. ACM (2007)

    Google Scholar 

  13. Jin, Y., Sharafuddin, E., Zhang, Z.-L.: Unveiling core network-wide communication patterns through application traffic activity graph decomposition. ACM SIGMETRICS Perform. Eval. Rev. 37(1), 49–60 (2009)

    Google Scholar 

  14. GraphViz (2011). http://www.graphviz.org/

  15. Thota, H.S., Vedula, V.S., Venkatesh, T.: Network traffic analysis using principal component graphs (2013)

    Google Scholar 

  16. Zhou, C.V., Leckie, C., Karunasekera, S.: A survey of coordinated attacks and collaborative intrusion detection. Comput. Secur. 29(1), 124–140 (2010)

    Article  Google Scholar 

  17. Zhou, Y., Hu, G., Wu, D.: A data mining system for distributed abnormal event detection in backbone networks. Secur. Commun. Netw. 7(5), 904–913 (2014)

    Article  Google Scholar 

  18. WIDE-TRANSIT (2013). http://mawi.wide.ad.jp/mawi/

  19. The CAIDA OC48 Dataset. http://www.caida.org/data/passive/passive_oc48_dataset

Download references

Author information

Authors and Affiliations

  1. School of Information and Communication Engineering, University of Electronic Science and Technology of China, Chengdu, 611731, China

    Hangyu Hu, Xuemeng Zhai, Mingda Wang & Guangmin Hu

Authors
  1. Hangyu Hu
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Xuemeng Zhai
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Mingda Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Guangmin Hu
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Guangmin Hu .

Editor information

Editors and Affiliations

  1. Nanjing University of Information Science and Technology, Nanjing, China

    Xingming Sun

  2. Nanjing University of Information Science and Technology, Nanjing, China

    Zhaoqing Pan

  3. Department of Computer Science, Purdue University, West Lafayette, IN, USA

    Elisa Bertino

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Hu, H., Zhai, X., Wang, M., Hu, G. (2018). Linked-Behaviors Profiling in IoT Networks Using Network Connection Graphs (NCGs). In: Sun, X., Pan, Z., Bertino, E. (eds) Cloud Computing and Security. ICCCS 2018. Lecture Notes in Computer Science(), vol 11067. Springer, Cham. https://doi.org/10.1007/978-3-030-00018-9_38

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-00018-9_38

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-00017-2

  • Online ISBN: 978-3-030-00018-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation