Passive Encrypted IoT Device Fingerprinting with Persistent Homology

Thumbnail Image

Files

passive_encrypted_iot_device_fingerprinting_with_persistent_homology.pdf (763.49 KB)
passive_encrypted_iot_device_fingerprinting_with_persistent_homology-Poster.pdf (401.58 KB)

Links to Files

https://openreview.net/forum?id=BXGqPm6nKgP

Permanent Link

http://hdl.handle.net/11603/20274

Collections

UMBC Computer Science and Electrical Engineering Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

Date

2020-12-09

Type of Work

conference papers and proceedings postprints
Text

Department

Program

Citation of Original Publication

Collins, Joseph R.; Iorga, Michaela; Cousin, Dmitry; Chapman, David; Passive Encrypted IoT Device Fingerprinting with Persistent Homology; Topological Data Analysis and Beyond Workshop (2020); https://openreview.net/forum?id=BXGqPm6nKgP

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.
Public Domain Mark 1.0
This work was written as part of one of the author's official duties as an Employee of the United States Government and is therefore a work of the United States Government. In accordance with 17 U.S.C. 105, no copyright protection is available for such works under U.S. Law.

Subjects

Abstract

Internet of things (IoT) devices are becoming increasingly prevalent. These devices can improve quality of life, but often present significant security risks to end users. In this work we present a novel persistent homology based method for the fingerprinting of IoT traffic. Traditional passive device fingerprinting methods directly inspect the packet attributes or contents within the captured traffic. But techniques to fingerprint devices based on inter-packet arrival time (IAT) are an important area of research, as this feature is available even in encrypted traffic. We demonstrate that Topological Data Analysis (TDA) using persistent homology over IAT packet windows is a viable approach to obtain discriminative features for device fingerprinting. The clique complex construction and weighting function we present are efficient to compute and robust to shifts of the packet window. The1-dimensional homology is calculated over the resulting filtered clique complex. We obtain competitive accuracy of 95.34% on the UNSW IoT dataset by using a convolutional neural network to classify over the corresponding persistence images.