Detection of Network Covert Channels in IoT Ecosystems Using Machine Learning

Contributo in Atti di convegno

Data di Pubblicazione:

2022

Abstract:

Steganographic techniques and especially covert channels are becoming prime mechanisms exploited by a wide-range of malware to avoid detection and to bypass network security tools. With the ubiquitous diffusion of IoT nodes, such offensive schemes are expected to be used to exfiltrate data or to covertly orchestrate botnets composed of resource-constrained nodes (e.g., as it happens in Mirai). Therefore, in this paper, we present a machine learning technique for the detection of network covert channels target- ing the TTL field of IPv4 datagrams. Specifically, we propose to use Autoencoders to reveal anomalous traffic behaviors. The experimental evaluation performed over realistic traffic traces showcases the effectiveness of our approach.

Tipologia CRIS:

04.01 Contributo in Atti di convegno

Keywords:

Information Hiding; Covert Channels; Cybersecurity; IoT; Machine Learning; AI; Autoencoders

Elenco autori:

Zuppelli, Marco; Manco, Giuseppe; Caviglione, Luca; Guarascio, Massimo; Cassavia, Nunziato

Autori di Ateneo:

CAVIGLIONE LUCA

GUARASCIO MASSIMO

MANCO GIUSEPPE

ZUPPELLI MARCO

Link alla scheda completa:

https://iris.cnr.it/handle/20.500.14243/441483

Titolo del libro:

Proceedings of the Italian Conference on Cybersecurity (ITASEC 2022)

Pubblicato in:

CEUR WORKSHOP PROCEEDINGS

Series

Dati Generali

URL

http://ceur-ws.org/Vol-3260/paper7.pdf

Detection of Network Covert Channels in IoT Ecosystems Using Machine Learning

Zuppelli, Marco; Manco, Giuseppe; Caviglione, Luca; Guarascio, Massimo; Cassavia, Nunziato

CEUR WORKSHOP PROCEEDINGS

Dati Generali

URL