Pub Date : 2024-11-15DOI: 10.1016/j.jnca.2024.104069
Zhiyuan Li, Hongyi Zhao, Jingyu Zhao, Yuqi Jiang, Fanliang Bu
With the increasing complexity of network protocol traffic in the modern network environment, the task of traffic classification is facing significant challenges. Existing methods lack research on the characteristics of traffic byte data and suffer from insufficient model generalization, leading to decreased classification accuracy. In response, we propose a method for encrypted traffic classification based on a Staggered Attention Network using Graph Neural Networks (SAT-Net), which takes into consideration both computer network topology and user interaction processes. Firstly, we design a Packet Byte Graph (PBG) to efficiently capture the byte features of flow and their relationships, thereby transforming the encrypted traffic classification problem into a graph classification problem. Secondly, we meticulously construct a GNN-based PBG learner, where the feature remapping layer and staggered attention layer are respectively used for feature propagation and fusion, enhancing the robustness of the model. Experiments on multiple different types of encrypted traffic datasets demonstrate that SAT-Net outperforms various advanced methods in identifying VPN traffic, Tor traffic, and malicious traffic, showing strong generalization capability.
{"title":"SAT-Net: A staggered attention network using graph neural networks for encrypted traffic classification","authors":"Zhiyuan Li, Hongyi Zhao, Jingyu Zhao, Yuqi Jiang, Fanliang Bu","doi":"10.1016/j.jnca.2024.104069","DOIUrl":"10.1016/j.jnca.2024.104069","url":null,"abstract":"<div><div>With the increasing complexity of network protocol traffic in the modern network environment, the task of traffic classification is facing significant challenges. Existing methods lack research on the characteristics of traffic byte data and suffer from insufficient model generalization, leading to decreased classification accuracy. In response, we propose a method for encrypted traffic classification based on a Staggered Attention Network using Graph Neural Networks (SAT-Net), which takes into consideration both computer network topology and user interaction processes. Firstly, we design a Packet Byte Graph (PBG) to efficiently capture the byte features of flow and their relationships, thereby transforming the encrypted traffic classification problem into a graph classification problem. Secondly, we meticulously construct a GNN-based PBG learner, where the feature remapping layer and staggered attention layer are respectively used for feature propagation and fusion, enhancing the robustness of the model. Experiments on multiple different types of encrypted traffic datasets demonstrate that SAT-Net outperforms various advanced methods in identifying VPN traffic, Tor traffic, and malicious traffic, showing strong generalization capability.</div></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"233 ","pages":"Article 104069"},"PeriodicalIF":7.7,"publicationDate":"2024-11-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"142655178","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2024-11-07DOI: 10.1016/j.jnca.2024.104050
Hassan Jalil Hadi , Yue Cao , Sifan Li , Naveed Ahmad , Mohammed Ali Alshara
Cyber crimes related to malware families are on the rise. This growth persists despite the prevalence of various antivirus software and approaches for malware detection and classification. Security experts have implemented Machine Learning (ML) techniques to identify these cyber-crimes. However, these approaches demand updated malware datasets for continuous improvements amid the evolving sophistication of malware strains. Thus, we present the FCG-MFD, a benchmark dataset with extensive Function Call Graphs (FCG) for malware family detection. This dataset guarantees resistance against emerging malware families by enabling security systems. Our dataset has two sub-datasets (FCG & Metadata) (1,00,000 samples) from VirusSamples, Virusshare, VirusSign, theZoo, Vx-underground, and MalwareBazaar curated using FCGs and metadata to optimize the efficacy of ML algorithms. We suggest a new malware analysis technique using FCGs and graph embedding networks, offering a solution to the complexity of feature engineering in ML-based malware analysis. Our approach to extracting semantic features via the Natural Language Processing (NLP) method is inspired by tasks involving sentences and words, respectively, for functions and instructions. We leverage a node2vec mechanism-based graph embedding network to generate malware embedding vectors. These vectors enable automated and efficient malware analysis by combining structural and semantic features. We use two datasets (FCG & Metadata) to assess FCG-MFD performance. F1-Scores of 99.14% and 99.28% are competitive with State-of-the-art (SOTA) methods.
{"title":"FCG-MFD: Benchmark function call graph-based dataset for malware family detection","authors":"Hassan Jalil Hadi , Yue Cao , Sifan Li , Naveed Ahmad , Mohammed Ali Alshara","doi":"10.1016/j.jnca.2024.104050","DOIUrl":"10.1016/j.jnca.2024.104050","url":null,"abstract":"<div><div>Cyber crimes related to malware families are on the rise. This growth persists despite the prevalence of various antivirus software and approaches for malware detection and classification. Security experts have implemented Machine Learning (ML) techniques to identify these cyber-crimes. However, these approaches demand updated malware datasets for continuous improvements amid the evolving sophistication of malware strains. Thus, we present the FCG-MFD, a benchmark dataset with extensive Function Call Graphs (FCG) for malware family detection. This dataset guarantees resistance against emerging malware families by enabling security systems. Our dataset has two sub-datasets (FCG & Metadata) (1,00,000 samples) from VirusSamples, Virusshare, VirusSign, theZoo, Vx-underground, and MalwareBazaar curated using FCGs and metadata to optimize the efficacy of ML algorithms. We suggest a new malware analysis technique using FCGs and graph embedding networks, offering a solution to the complexity of feature engineering in ML-based malware analysis. Our approach to extracting semantic features via the Natural Language Processing (NLP) method is inspired by tasks involving sentences and words, respectively, for functions and instructions. We leverage a node2vec mechanism-based graph embedding network to generate malware embedding vectors. These vectors enable automated and efficient malware analysis by combining structural and semantic features. We use two datasets (FCG & Metadata) to assess FCG-MFD performance. F1-Scores of 99.14% and 99.28% are competitive with State-of-the-art (SOTA) methods.</div></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"233 ","pages":"Article 104050"},"PeriodicalIF":7.7,"publicationDate":"2024-11-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"142655185","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2024-11-07DOI: 10.1016/j.jnca.2024.104048
Andjela Jovanovic , Luka Jovanovic , Miodrag Zivkovic , Nebojsa Bacanin , Vladimir Simic , Dragan Pamucar , Milos Antonijevic
Increasing global energy demands and decreasing stocks of fossil fuels have led to a resurgence of research into energy forecasting. Artificial intelligence, explicitly time series forecasting holds great potential to improve predictions of cost and demand with many lucrative applications across several fields. Many factors influence prices on a global scale, from socio-economic factors to distribution, availability, and international policy. Also, various factors need to be considered in order to make an accurate forecast. By analyzing the current literature, a gap for improvements within this domain exists. Therefore, this work suggests and explores the potential of multi-headed long short-term memory models for gasoline price forecasting, since this issue was not tackled with multi-headed models before. Additionally, since the computational requirements for such models are relatively high, work focuses on lightweight approaches that consist of a relatively low number of neurons per layer, trained in a small number of epochs. However, as algorithm performance can be heavily dependent on appropriate hyper-parameter selections, a modified variant of the particle swarm optimization algorithm is also set forth to help in optimizing the model’s architecture and training parameters. A comparative analysis is conducted using energy data collected from multiple public sources between several contemporary optimizers. The outcomes are put through a meticulous statistical validation to ascertain the significance of the findings. The best-constructed models attained a mean square error of just 0.044025 with an R-squared of 0.911797, suggesting potential for real-world use.
{"title":"Particle swarm optimization tuned multi-headed long short-term memory networks approach for fuel prices forecasting","authors":"Andjela Jovanovic , Luka Jovanovic , Miodrag Zivkovic , Nebojsa Bacanin , Vladimir Simic , Dragan Pamucar , Milos Antonijevic","doi":"10.1016/j.jnca.2024.104048","DOIUrl":"10.1016/j.jnca.2024.104048","url":null,"abstract":"<div><div>Increasing global energy demands and decreasing stocks of fossil fuels have led to a resurgence of research into energy forecasting. Artificial intelligence, explicitly time series forecasting holds great potential to improve predictions of cost and demand with many lucrative applications across several fields. Many factors influence prices on a global scale, from socio-economic factors to distribution, availability, and international policy. Also, various factors need to be considered in order to make an accurate forecast. By analyzing the current literature, a gap for improvements within this domain exists. Therefore, this work suggests and explores the potential of multi-headed long short-term memory models for gasoline price forecasting, since this issue was not tackled with multi-headed models before. Additionally, since the computational requirements for such models are relatively high, work focuses on lightweight approaches that consist of a relatively low number of neurons per layer, trained in a small number of epochs. However, as algorithm performance can be heavily dependent on appropriate hyper-parameter selections, a modified variant of the particle swarm optimization algorithm is also set forth to help in optimizing the model’s architecture and training parameters. A comparative analysis is conducted using energy data collected from multiple public sources between several contemporary optimizers. The outcomes are put through a meticulous statistical validation to ascertain the significance of the findings. The best-constructed models attained a mean square error of just 0.044025 with an R-squared of 0.911797, suggesting potential for real-world use.</div></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"233 ","pages":"Article 104048"},"PeriodicalIF":7.7,"publicationDate":"2024-11-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"142655183","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2024-11-06DOI: 10.1016/j.jnca.2024.104051
Senthil Kumar Jagatheesaperumal , Ijaz Ahmad , Marko Höyhtyä , Suleman Khan , Andrei Gurtov
Deep learning has been proven to be a powerful tool for addressing the most significant issues in cognitive radio networks, such as spectrum sensing, spectrum sharing, resource allocation, and security attacks. The utilization of deep learning techniques in cognitive radio networks can significantly enhance the network’s capability to adapt to changing environments and improve the overall system’s efficiency and reliability. As the demand for higher data rates and connectivity increases, B5G/6G wireless networks are expected to enable new services and applications significantly. Therefore, the significance of deep learning in addressing cognitive radio network challenges cannot be overstated. This review article provides valuable insights into potential solutions that can serve as a foundation for the development of future B5G/6G services. By leveraging the power of deep learning, cognitive radio networks can pave the way for the next generation of wireless networks capable of meeting the ever-increasing demands for higher data rates, improved reliability, and security.
{"title":"Deep learning frameworks for cognitive radio networks: Review and open research challenges","authors":"Senthil Kumar Jagatheesaperumal , Ijaz Ahmad , Marko Höyhtyä , Suleman Khan , Andrei Gurtov","doi":"10.1016/j.jnca.2024.104051","DOIUrl":"10.1016/j.jnca.2024.104051","url":null,"abstract":"<div><div>Deep learning has been proven to be a powerful tool for addressing the most significant issues in cognitive radio networks, such as spectrum sensing, spectrum sharing, resource allocation, and security attacks. The utilization of deep learning techniques in cognitive radio networks can significantly enhance the network’s capability to adapt to changing environments and improve the overall system’s efficiency and reliability. As the demand for higher data rates and connectivity increases, B5G/6G wireless networks are expected to enable new services and applications significantly. Therefore, the significance of deep learning in addressing cognitive radio network challenges cannot be overstated. This review article provides valuable insights into potential solutions that can serve as a foundation for the development of future B5G/6G services. By leveraging the power of deep learning, cognitive radio networks can pave the way for the next generation of wireless networks capable of meeting the ever-increasing demands for higher data rates, improved reliability, and security.</div></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"233 ","pages":"Article 104051"},"PeriodicalIF":7.7,"publicationDate":"2024-11-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"142655182","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2024-11-05DOI: 10.1016/j.jnca.2024.104049
Farkhondeh Kiaee , Ehsan Arianyan
In the recent years, emergence huge Edge-Cloud environments faces great challenges like the ever-increasing energy demand, the extensive Internet of Things (IoT) devices adaptation, and the goals of efficiency and reliability. Containers has become increasingly popular to encapsulate various services and container migration among Edge-Cloud nodes may enable new use cases in various IoT domains. In this study, an efficient joint VM and container consolidation solution is proposed for Edge-Cloud environment. The proposed method uses the Auto-Encoder (AE) and TOPSIS modules for two stages of consolidation subproblems, namely, Joint VM and Container Multi-criteria Migration Decision (AE-TOPSIS-JVCMMD) and Edge-Cloud Power SLA Aware (AE-TOPSIS-ECPSA) for VM placement. The module extracts the contribution of different criteria and computes the scores of all the alternatives. Combining the non-linear contribution learning ability of the AE algorithm and the intelligent ranking of the TOPSIS algorithm, the proposed method successfully avoids the bias of conventional multi-criteria approaches toward alternatives that have good evaluations in two or more dependent criteria. The simulations conducted using the Cloudsim simulator confirm the effectiveness of the proposed policies, demonstrating to 41.5%, 30.13%, 12.9%, 10.3%, 58.2% and 56.1% reductions in energy consumption, SLA violation, response time, running cost, number of VM migrations, and number of container migrations, respectively in comparison with state of the arts.
{"title":"Joint VM and container consolidation with auto-encoder based contribution extraction of decision criteria in Edge-Cloud environment","authors":"Farkhondeh Kiaee , Ehsan Arianyan","doi":"10.1016/j.jnca.2024.104049","DOIUrl":"10.1016/j.jnca.2024.104049","url":null,"abstract":"<div><div>In the recent years, emergence huge Edge-Cloud environments faces great challenges like the ever-increasing energy demand, the extensive Internet of Things (IoT) devices adaptation, and the goals of efficiency and reliability. Containers has become increasingly popular to encapsulate various services and container migration among Edge-Cloud nodes may enable new use cases in various IoT domains. In this study, an efficient joint VM and container consolidation solution is proposed for Edge-Cloud environment. The proposed method uses the Auto-Encoder (AE) and TOPSIS modules for two stages of consolidation subproblems, namely, Joint VM and Container Multi-criteria Migration Decision (AE-TOPSIS-JVCMMD) and Edge-Cloud Power SLA Aware (AE-TOPSIS-ECPSA) for VM placement. The module extracts the contribution of different criteria and computes the scores of all the alternatives. Combining the non-linear contribution learning ability of the AE algorithm and the intelligent ranking of the TOPSIS algorithm, the proposed method successfully avoids the bias of conventional multi-criteria approaches toward alternatives that have good evaluations in two or more dependent criteria. The simulations conducted using the Cloudsim simulator confirm the effectiveness of the proposed policies, demonstrating to 41.5%, 30.13%, 12.9%, 10.3%, 58.2% and 56.1% reductions in energy consumption, SLA violation, response time, running cost, number of VM migrations, and number of container migrations, respectively in comparison with state of the arts.</div></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"233 ","pages":"Article 104049"},"PeriodicalIF":7.7,"publicationDate":"2024-11-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"142655184","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2023-11-14DOI: 10.1016/j.jnca.2023.103790
Cristiano Costa Argemon Vieira , Luiz Fernando Bittencourt , Thiago Augusto Lopes Genez , Maycon Leone M. Peixoto , Edmundo Roberto Mauro Madeira
Cloud users require a set of specific computing needs for their applications, while cloud providers offer a variety of computing products and services on the Internet. These two cloud players make deals through the use of service level agreements (SLAs) where, for instance, prices and levels of quality of service (QoS) are defined. From the cloud user’s point of view, building a robust set of SLAs becomes a challenging problem when multiple cloud providers are present in the market. The allocation of resources in the cloud to run complex applications with guaranteed reliable, secure and acceptable response times is not an easy task, and this paper aims to tackle this problem. This work describes a resource allocation service that aims to optimize the user’s request of cloud resources (virtual machines — VMs) onto multiple Infrastructure-as-a-Service (IaaS) cloud providers. The Resource-Allocation-as-a-Service (RAaaS) proposed in this paper works as a standalone service between cloud users and cloud providers, and it relies on three different requirements: reliability, processing, and mutual trust. The proposed resource allocation service is carried out using the three very common types of VM billing models: on-demand, reserved and spot, where the spot cost model is employed to furnish low-cost resources for the application allocation to improve its reliability. The contributions of this paper are threefold: (i) a three-dimension SLA encompassing reliability, processing, and trust; (ii) an integer linear program (ILP) to schedule cloud-based VMs to applications considering the three-dimension SLA model, and (iii) a heuristic algorithm to mitigate possible QoS violations. Experimental results show that the proposed RAaaS procedure is capable of optimizing resource allocation considering multiple criteria in the SLA while mitigating the extra costs introduced by mutual trust between customers using redundant spot instances allocation.
{"title":"RAaaS: Resource Allocation as a Service in multiple cloud providers","authors":"Cristiano Costa Argemon Vieira , Luiz Fernando Bittencourt , Thiago Augusto Lopes Genez , Maycon Leone M. Peixoto , Edmundo Roberto Mauro Madeira","doi":"10.1016/j.jnca.2023.103790","DOIUrl":"10.1016/j.jnca.2023.103790","url":null,"abstract":"<div><p>Cloud users require a set of specific computing needs for their applications, while cloud providers offer a variety of computing products and services on the Internet. These two cloud players make deals through the use of service level agreements (SLAs) where, for instance, prices and levels of quality of service (QoS) are defined. From the cloud user’s point of view, building a robust set of SLAs becomes a challenging problem when multiple cloud providers are present in the market. The allocation of resources in the cloud to run complex applications with guaranteed reliable, secure and acceptable response times is not an easy task, and this paper aims to tackle this problem. This work describes a resource allocation service that aims to optimize the user’s request of cloud resources (virtual machines — VMs) onto multiple Infrastructure-as-a-Service (IaaS) cloud providers. The Resource-Allocation-as-a-Service (RAaaS) proposed in this paper works as a <em>standalone service</em> between cloud users and cloud providers, and it relies on three different requirements: <em>reliability</em>, <em>processing</em>, and mutual <em>trust</em>. The proposed resource allocation service is carried out using the three very common types of VM billing models: <em>on-demand</em>, <em>reserved</em> and <em>spot</em>, where the spot cost model is employed to furnish low-cost resources for the application allocation to improve its reliability. The contributions of this paper are threefold: (i) a three-dimension SLA encompassing reliability, processing, and trust; (ii) an integer linear program (ILP) to schedule cloud-based VMs to applications considering the three-dimension SLA model, and (iii) a heuristic algorithm to mitigate possible QoS violations. Experimental results show that the proposed RAaaS procedure is capable of optimizing resource allocation considering multiple criteria in the SLA while mitigating the extra costs introduced by mutual trust between customers using redundant spot instances allocation.</p></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"221 ","pages":"Article 103790"},"PeriodicalIF":8.7,"publicationDate":"2023-11-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S1084804523002096/pdfft?md5=2b438420790d34174bf1f8908cc90178&pid=1-s2.0-S1084804523002096-main.pdf","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"92158661","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"OA","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2023-11-13DOI: 10.1016/j.jnca.2023.103784
Shahid Latif , Wadii Boulila , Anis Koubaa , Zhuo Zou , Jawad Ahmad
In the dynamic field of the Industrial Internet of Things (IIoT), the networks are increasingly vulnerable to a diverse range of cyberattacks. This vulnerability necessitates the development of advanced intrusion detection systems (IDSs). Addressing this need, our research contributes to the existing cybersecurity literature by introducing an optimized Intrusion Detection System based on Deep Transfer Learning (DTL), specifically tailored for heterogeneous IIoT networks. Our framework employs a tri-layer architectural approach that synergistically integrates Convolutional Neural Networks (CNNs), Genetic Algorithms (GA), and bootstrap aggregation ensemble techniques. The methodology is executed in three critical stages: First, we convert a state-of-the-art cybersecurity dataset, Edge_IIoTset, into image data, thereby facilitating CNN-based analytics. Second, GA is utilized to fine-tune the hyperparameters of each base learning model, enhancing the model’s adaptability and performance. Finally, the outputs of the top-performing models are amalgamated using ensemble techniques, bolstering the robustness of the IDS. Through rigorous evaluation protocols, our framework demonstrated exceptional performance, reliably achieving a 100% attack detection accuracy rate. This result establishes our framework as highly effective against 14 distinct types of cyberattacks. The findings bear significant implications for the ongoing development of secure, efficient, and adaptive IDS solutions in the complex landscape of IIoT networks.
{"title":"DTL-IDS: An optimized Intrusion Detection Framework using Deep Transfer Learning and Genetic Algorithm","authors":"Shahid Latif , Wadii Boulila , Anis Koubaa , Zhuo Zou , Jawad Ahmad","doi":"10.1016/j.jnca.2023.103784","DOIUrl":"10.1016/j.jnca.2023.103784","url":null,"abstract":"<div><p>In the dynamic field of the Industrial Internet of Things (IIoT), the networks are increasingly vulnerable to a diverse range of cyberattacks. This vulnerability necessitates the development of advanced intrusion detection systems (IDSs). Addressing this need, our research contributes to the existing cybersecurity literature by introducing an optimized Intrusion Detection System based on Deep Transfer Learning (DTL), specifically tailored for heterogeneous IIoT networks. Our framework employs a tri-layer architectural approach that synergistically integrates Convolutional Neural Networks (CNNs), Genetic Algorithms (GA), and bootstrap aggregation ensemble techniques. The methodology is executed in three critical stages: First, we convert a state-of-the-art cybersecurity dataset, Edge_IIoTset, into image data, thereby facilitating CNN-based analytics. Second, GA is utilized to fine-tune the hyperparameters of each base learning model, enhancing the model’s adaptability and performance. Finally, the outputs of the top-performing models are amalgamated using ensemble techniques, bolstering the robustness of the IDS. Through rigorous evaluation protocols, our framework demonstrated exceptional performance, reliably achieving a 100% attack detection accuracy rate. This result establishes our framework as highly effective against 14 distinct types of cyberattacks. The findings bear significant implications for the ongoing development of secure, efficient, and adaptive IDS solutions in the complex landscape of IIoT networks.</p></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"221 ","pages":"Article 103784"},"PeriodicalIF":8.7,"publicationDate":"2023-11-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S1084804523002035/pdfft?md5=28cf5bdbb91039e0db15a006ab7696b0&pid=1-s2.0-S1084804523002035-main.pdf","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"91398481","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"OA","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
This paper proposes an enhanced method for localizing sensor nodes in wireless sensor networks with obstacles. Such environment settings lead to lower localization accuracy because locations are estimated based on detour distances circumventing the obstacles; we, therefore, improve the segmentation technique to address the issue as they divide the whole area into multiple smaller ones, each containing fewer or no obstacles. Nevertheless, when radio transmissions between sensor nodes are obstructed (as simulated by the radio irregularity model), the signal-strength variation tends to be high, reducing localization accuracy; thus, we provide a method for accurately approximating the distances between pairs of an anchor node (whose location is known) and an unknown node by incorporating the related error into the approximation process. Additionally, when the nodes with unknown locations are outside the polygon formed by the anchor nodes, the search area for localization is relatively large, resulting in lower accuracy and a longer search time; we then propose a method for reducing the size of approximation areas by forming boundaries based on the two intersection points between the ranges of two anchor nodes used to localize an unknown node. However, these reduced search areas could still be large; we further increase the accuracy of the PSO location estimation method by adaptively adjusting the number of particles. In addition, with PSO, the accuracy of unknown node location estimation depends on having a properly selected fitness function; therefore, we incorporate appropriate variables to reflect the distance approximation accuracy between each anchor-unknown node pair. In experiments, we measure performance in sensor node deployment areas of three different shapes: C-shaped, with 1 hole, and with 2 rectangular holes. The results show that our method provides higher localization accuracy than others in small-, medium-, and large-scaled WSNs. Specifically, our proposed method is 27.46%, 49.28%, 50.33%, and 74.62% more accurate on average than IDE-NSL, PSO–C, min-max PSO, and niching PSO, respectively.
{"title":"An enhanced node segmentation and distance estimation scheme with a reduced search space boundary and improved PSO for obstacle-aware wireless sensor network localization","authors":"Songyut Phoemphon , Nutthanon Leelathakul , Chakchai So-In","doi":"10.1016/j.jnca.2023.103783","DOIUrl":"10.1016/j.jnca.2023.103783","url":null,"abstract":"<div><p>This paper proposes an enhanced method for localizing sensor nodes in wireless sensor networks with obstacles. Such environment settings lead to lower localization accuracy because locations are estimated based on detour distances circumventing the obstacles; we, therefore, improve the segmentation technique to address the issue as they divide the whole area into multiple smaller ones, each containing fewer or no obstacles. Nevertheless, when radio transmissions between sensor nodes are obstructed (as simulated by the radio irregularity model), the signal-strength variation tends to be high, reducing localization accuracy; thus, we provide a method for accurately approximating the distances between pairs of an anchor node (whose location is known) and an unknown node by incorporating the related error into the approximation process. Additionally, when the nodes with unknown locations are outside the polygon formed by the anchor nodes, the search area for localization is relatively large, resulting in lower accuracy and a longer search time; we then propose a method for reducing the size of approximation areas by forming boundaries based on the two intersection points between the ranges of two anchor nodes used to localize an unknown node. However, these reduced search areas could still be large; we further increase the accuracy of the PSO location estimation method by adaptively adjusting the number of particles. In addition, with PSO, the accuracy of unknown node location estimation depends on having a properly selected fitness function; therefore, we incorporate appropriate variables to reflect the distance approximation accuracy between each anchor-unknown node pair. In experiments, we measure performance in sensor node deployment areas of three different shapes: C-shaped, with 1 hole, and with 2 rectangular holes. The results show that our method provides higher localization accuracy than others in small-, medium-, and large-scaled WSNs. Specifically, our proposed method is 27.46%, 49.28%, 50.33%, and 74.62% more accurate on average than IDE-NSL, PSO–C, min-max PSO, and niching PSO, respectively.</p></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"221 ","pages":"Article 103783"},"PeriodicalIF":8.7,"publicationDate":"2023-11-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S1084804523002023/pdfft?md5=f0463222027e85e41992ef6576402b4e&pid=1-s2.0-S1084804523002023-main.pdf","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"72365530","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"OA","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2023-11-10DOI: 10.1016/j.jnca.2023.103785
Zihang Zhen , Xiaoding Wang , Hui Lin , Sahil Garg , Prabhat Kumar , M. Shamim Hossain
Currently, the crowdsourcing system has serious problems such as single point of failure of the server, leakage of user privacy, unfair arbitration, etc. By storing the interactions between workers, requesters, and crowdsourcing platforms in the form of transactions on the blockchain, these problems can be effectively addressed. However, the improvement in total computing power on the blockchain is difficult to provide positive feedback to the efficiency of transaction confirmation, thereby limiting the performance of crowdsourcing systems. On the other hand, the increasing amount of data in blockchain further increases the difficulty of nodes participating in consensus, affecting the security of crowdsourcing systems. To address the above problems, in this paper we design a blockchain architecture based on dynamic state sharding, called DSSBD. Firstly, we solve the problems caused by cross sharding transactions and reconfiguration in blockchain state sharding through graph segmentation and relay transactions. Then, we model the optimal block generation problem as a Markov decision process. By utilizing deep reinforcement learning, we can dynamically adjust the number of shards, block spacing, and block size. This approach helps improve both the throughput of the blockchain and the proportion of non-malicious nodes. Security analysis has proven that the proposed DSSBD can effectively resist attacks such as transaction atomic attacks, double spending attacks, sybil attacks, replay attacks, etc. The experimental results show that the crowdsourcing system with the proposed DSSBD has better performance in throughput, latency, balancing, cross-shard transaction proportion, and node reconfiguration proportion, etc., while ensuring security.
{"title":"A dynamic state sharding blockchain architecture for scalable and secure crowdsourcing systems","authors":"Zihang Zhen , Xiaoding Wang , Hui Lin , Sahil Garg , Prabhat Kumar , M. Shamim Hossain","doi":"10.1016/j.jnca.2023.103785","DOIUrl":"10.1016/j.jnca.2023.103785","url":null,"abstract":"<div><p><span>Currently, the crowdsourcing system has serious problems such as single point of failure<span><span><span><span> of the server, leakage of user privacy, unfair arbitration, etc. By storing the interactions between workers, requesters, and crowdsourcing platforms in the form of transactions on the </span>blockchain, these problems can be effectively addressed. However, the improvement in total computing power on the blockchain is difficult to provide positive feedback to the efficiency of transaction confirmation, thereby limiting the performance of crowdsourcing systems. On the other hand, the increasing amount of data in blockchain further increases the difficulty of nodes participating in consensus, affecting the security of crowdsourcing systems. To address the above problems, in this paper we design a blockchain architecture based on dynamic state sharding, called DSSBD. Firstly, we solve the problems caused by cross sharding transactions and reconfiguration in blockchain state sharding through graph segmentation and relay transactions. Then, we model the optimal block generation problem as a </span>Markov decision process. By utilizing </span>deep reinforcement learning<span>, we can dynamically adjust the number of shards, block spacing, and block size. This approach helps improve both the throughput of the blockchain and the proportion of non-malicious nodes. Security analysis has proven that the proposed DSSBD can effectively resist attacks such as transaction atomic attacks, double spending attacks, </span></span></span>sybil attacks, replay attacks, etc. The experimental results show that the crowdsourcing system with the proposed DSSBD has better performance in throughput, latency, balancing, cross-shard transaction proportion, and node reconfiguration proportion, etc., while ensuring security.</p></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"222 ","pages":"Article 103785"},"PeriodicalIF":8.7,"publicationDate":"2023-11-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"72365529","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2023-11-10DOI: 10.1016/j.jnca.2023.103780
Puneet Kumar, Behnam Dezfouli
In Software-Defined Networks (SDNs), the control plane and data plane communicate for various purposes such as applying configurations and collecting statistical data. While various methods have been proposed to reduce the overhead and enhance the scalability of SDNs, the impact of the transport layer protocol used for southbound communication has not been investigated. Existing SDNs rely on Transmission Control Protocol (TCP) to enforce reliability. In this paper, we show that the use of TCP imposes a considerable overhead on southbound communication, identify the causes of this overhead, and demonstrate how replacing TCP with Quick UDP Internet Connection (QUIC) protocol can enhance the performance of this communication. We introduce the quicSDN architecture to enable southbound communication in SDNs via the QUIC protocol. We present a reference architecture based on the standard, most widely-used protocols by the SDN community and show how the controller and switch are revamped to facilitate this transition. We compare, both analytically and empirically, the performance of quicSDN versus the traditional SDN architecture and confirm the superior performance of quicSDN. Our empirical evaluations in different settings demonstrate that quicSDN lowers communication overhead and message delivery delay by up to 82% and 45%, respectively, compared to SDNs using TCP for their southbound communication.
{"title":"quicSDN: Transitioning from TCP to QUIC for southbound communication in software-defined networks","authors":"Puneet Kumar, Behnam Dezfouli","doi":"10.1016/j.jnca.2023.103780","DOIUrl":"10.1016/j.jnca.2023.103780","url":null,"abstract":"<div><p><span><span>In Software-Defined Networks (SDNs), the control plane and data plane communicate for various purposes such as applying configurations and collecting statistical data. While various methods have been proposed to reduce the overhead and enhance the scalability of SDNs, the impact of the transport layer protocol used for </span>southbound communication<span> has not been investigated. Existing SDNs rely on Transmission Control Protocol<span> (TCP) to enforce reliability. In this paper, we show that the use of TCP imposes a considerable overhead on southbound communication, identify the causes of this overhead, and demonstrate how replacing TCP with Quick UDP Internet Connection (QUIC) protocol can enhance the performance of this communication. We introduce the </span></span></span><em>quicSDN</em><span> architecture to enable southbound communication in SDNs via the QUIC protocol. We present a reference architecture based on the standard, most widely-used protocols by the SDN community and show how the controller and switch are revamped to facilitate this transition. We compare, both analytically and empirically, the performance of quicSDN versus the traditional SDN architecture and confirm the superior performance of quicSDN. Our empirical evaluations in different settings demonstrate that quicSDN lowers communication overhead and message delivery delay by up to 82% and 45%, respectively, compared to SDNs using TCP for their southbound communication.</span></p></div>","PeriodicalId":54784,"journal":{"name":"Journal of Network and Computer Applications","volume":"222 ","pages":"Article 103780"},"PeriodicalIF":8.7,"publicationDate":"2023-11-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"72365528","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
扫码关注我们
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号