A User Authentication Model for IoT Networks Based on App Traffic Patterns

2018 IEEE 9th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON) Pub Date : 2018-11-01 DOI:10.1109/IEMCON.2018.8614892

Yosef Ashibani, Q. Mahmoud

{"title":"A User Authentication Model for IoT Networks Based on App Traffic Patterns","authors":"Yosef Ashibani, Q. Mahmoud","doi":"10.1109/IEMCON.2018.8614892","DOIUrl":null,"url":null,"abstract":"While access to a variety of Internet of Things (IoT) networks can be achieved through end-user devices such as smartphones or tablets, these devices are susceptible to theft or loss, and their use by illicit users could lead to unauthorized access to IoT networks, thus allowing access to user information. Hence, an effective authentication mechanism that continuously authenticates users in the background is required in order to detect unauthorized access. As most access to IoT devices is achieved through end-user devices, a rich set of information can be extracted and used in the background to continuously authenticate users without requiring further user intervention. Several studies have examined mobile app usage in the broader population but failed to consider network traffic patterns during app access for user authentication. This paper presents a model to authenticate users based on the network traffic patterns of accessed apps, with an average F-measure of 95.5%. Overall, the preliminary results are promising and show the effectiveness and usability of the proposed model.","PeriodicalId":368939,"journal":{"name":"2018 IEEE 9th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON)","volume":"48 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"17","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE 9th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IEMCON.2018.8614892","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 17

Abstract

While access to a variety of Internet of Things (IoT) networks can be achieved through end-user devices such as smartphones or tablets, these devices are susceptible to theft or loss, and their use by illicit users could lead to unauthorized access to IoT networks, thus allowing access to user information. Hence, an effective authentication mechanism that continuously authenticates users in the background is required in order to detect unauthorized access. As most access to IoT devices is achieved through end-user devices, a rich set of information can be extracted and used in the background to continuously authenticate users without requiring further user intervention. Several studies have examined mobile app usage in the broader population but failed to consider network traffic patterns during app access for user authentication. This paper presents a model to authenticate users based on the network traffic patterns of accessed apps, with an average F-measure of 95.5%. Overall, the preliminary results are promising and show the effectiveness and usability of the proposed model.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

基于应用流量模式的物联网用户认证模型

虽然可以通过智能手机或平板电脑等终端用户设备访问各种物联网(IoT)网络，但这些设备容易被盗或丢失，非法用户使用这些设备可能导致未经授权访问物联网网络，从而允许访问用户信息。因此，需要一种有效的身份验证机制，在后台持续对用户进行身份验证，以检测未经授权的访问。由于大多数对物联网设备的访问都是通过最终用户设备实现的，因此可以提取丰富的信息并在后台使用，以持续验证用户，而无需用户进一步干预。有几项研究调查了更广泛人群的移动应用使用情况，但未能考虑到应用访问用户身份验证期间的网络流量模式。本文提出了一种基于接入应用的网络流量模式对用户进行认证的模型，其平均f值为95.5%。总体而言，初步结果是有希望的，表明了所提出模型的有效性和可用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2018 IEEE 9th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON)

自引率

0.00%

发文量