IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT

Mahmoud Ellouh; Mustafa Ghaleb; Muhamad Felemban

doi:10.1109/CICN56167.2022.10008323

IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT

Mahmoud Ellouh, Mustafa Ghaleb, Muhamad Felemban

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

6 Scopus citations

Abstract

IoT enables the communication of electronic devices and sensors with the Internet using standard protocols to achieve autonomy, robustness, and reliable data exchange among devices and real applications. The wide variety of IoT devices has led to raising concerns about the security of interconnected devices. IoT manufacturers have been increasing recently, which has resulted in building IoT devices with different standards, protocols, features, and technologies. However, the lack of implementation of security features for IoT devices has led the IoT devices to be susceptible to attacks and targeted by adversaries. In order to provide an efficient honeypot-based solution, it should benefit from the malicious traffic in the filtering phase to detect zero-day attacks. In this paper, we propose IoTZeroJar, a honeypot system to detect the attacker's malicious activities and analyze zero-day attacks.

Original language	English
Title of host publication	Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	765-771
Number of pages	7
ISBN (Electronic)	9781665487719
DOIs	https://doi.org/10.1109/CICN56167.2022.10008323
State	Published - 2022
Event	14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022 - Al-Khobar, Saudi Arabia Duration: 4 Dec 2022 → 6 Dec 2022

Publication series

Name	Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022

Conference

Conference	14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022
Country/Territory	Saudi Arabia
City	Al-Khobar
Period	4/12/22 → 6/12/22

Bibliographical note

Publisher Copyright:
© 2022 IEEE.

Keywords

Honeypot
Internet of things
Zero-day attacks

ASJC Scopus subject areas

Artificial Intelligence
Computer Networks and Communications
Computer Science Applications
Computer Vision and Pattern Recognition

Access to Document

10.1109/CICN56167.2022.10008323

Cite this

Ellouh, M., Ghaleb, M., & Felemban, M. (2022). IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT. In Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022 (pp. 765-771). (Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CICN56167.2022.10008323

Ellouh, Mahmoud ; Ghaleb, Mustafa ; Felemban, Muhamad. / IoTZeroJar : Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT. Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022. Institute of Electrical and Electronics Engineers Inc., 2022. pp. 765-771 (Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022).

@inproceedings{8cb1de6da7b5454787f20d6d7e316ceb,

title = "IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT",

abstract = "IoT enables the communication of electronic devices and sensors with the Internet using standard protocols to achieve autonomy, robustness, and reliable data exchange among devices and real applications. The wide variety of IoT devices has led to raising concerns about the security of interconnected devices. IoT manufacturers have been increasing recently, which has resulted in building IoT devices with different standards, protocols, features, and technologies. However, the lack of implementation of security features for IoT devices has led the IoT devices to be susceptible to attacks and targeted by adversaries. In order to provide an efficient honeypot-based solution, it should benefit from the malicious traffic in the filtering phase to detect zero-day attacks. In this paper, we propose IoTZeroJar, a honeypot system to detect the attacker's malicious activities and analyze zero-day attacks.",

keywords = "Honeypot, Internet of things, Zero-day attacks",

author = "Mahmoud Ellouh and Mustafa Ghaleb and Muhamad Felemban",

note = "Publisher Copyright: {\textcopyright} 2022 IEEE.; 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022 ; Conference date: 04-12-2022 Through 06-12-2022",

year = "2022",

doi = "10.1109/CICN56167.2022.10008323",

language = "English",

series = "Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "765--771",

booktitle = "Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022",

address = "United States",

}

Ellouh, M, Ghaleb, M & Felemban, M 2022, IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT. in Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022. Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022, Institute of Electrical and Electronics Engineers Inc., pp. 765-771, 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022, Al-Khobar, Saudi Arabia, 4/12/22. https://doi.org/10.1109/CICN56167.2022.10008323

IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT. / Ellouh, Mahmoud; Ghaleb, Mustafa ; Felemban, Muhamad.
Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022. Institute of Electrical and Electronics Engineers Inc., 2022. p. 765-771 (Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - IoTZeroJar

T2 - 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022

AU - Ellouh, Mahmoud

AU - Ghaleb, Mustafa

AU - Felemban, Muhamad

PY - 2022

Y1 - 2022

N2 - IoT enables the communication of electronic devices and sensors with the Internet using standard protocols to achieve autonomy, robustness, and reliable data exchange among devices and real applications. The wide variety of IoT devices has led to raising concerns about the security of interconnected devices. IoT manufacturers have been increasing recently, which has resulted in building IoT devices with different standards, protocols, features, and technologies. However, the lack of implementation of security features for IoT devices has led the IoT devices to be susceptible to attacks and targeted by adversaries. In order to provide an efficient honeypot-based solution, it should benefit from the malicious traffic in the filtering phase to detect zero-day attacks. In this paper, we propose IoTZeroJar, a honeypot system to detect the attacker's malicious activities and analyze zero-day attacks.

AB - IoT enables the communication of electronic devices and sensors with the Internet using standard protocols to achieve autonomy, robustness, and reliable data exchange among devices and real applications. The wide variety of IoT devices has led to raising concerns about the security of interconnected devices. IoT manufacturers have been increasing recently, which has resulted in building IoT devices with different standards, protocols, features, and technologies. However, the lack of implementation of security features for IoT devices has led the IoT devices to be susceptible to attacks and targeted by adversaries. In order to provide an efficient honeypot-based solution, it should benefit from the malicious traffic in the filtering phase to detect zero-day attacks. In this paper, we propose IoTZeroJar, a honeypot system to detect the attacker's malicious activities and analyze zero-day attacks.

KW - Honeypot

KW - Internet of things

KW - Zero-day attacks

UR - http://www.scopus.com/inward/record.url?scp=85146850923&partnerID=8YFLogxK

U2 - 10.1109/CICN56167.2022.10008323

DO - 10.1109/CICN56167.2022.10008323

M3 - Conference contribution

AN - SCOPUS:85146850923

T3 - Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022

SP - 765

EP - 771

BT - Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 4 December 2022 through 6 December 2022

ER -

Ellouh M, Ghaleb M , Felemban M. IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT. In Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022. Institute of Electrical and Electronics Engineers Inc. 2022. p. 765-771. (Proceedings - 2022 14th IEEE International Conference on Computational Intelligence and Communication Networks, CICN 2022). doi: 10.1109/CICN56167.2022.10008323

IoTZeroJar: Towards a Honeypot Architecture for Detection of Zero-Day Attacks in IoT

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Fingerprint

Cite this