0% Complete
Home
/
15th International Conference on Computer and Knowledge Engineering
DTranIDS: A Two-Tiered Intrusion Detection System for RPL-based IoT Networks based on Decision Tree and Transformer Models
Authors :
Mohammad Fazeli
1
Mohsen Raji
2
Mohammad Mahdi Fazeli
3
1- School of Electrical and Computer Engineering, University of Shiraz, Iran
2- School of Electrical and Computer Engineering, University of Shiraz, Iran
3- School of Electrical and Computer Engineering, University of Shiraz, Iran
Keywords :
IoT Security،RPL attacks،Anomaly Detection،Anomaly Detection،Decision Tree،Transformer،Two-Tiered Model،Intrusion Detection System
Abstract :
RPL (Routing Protocol for Low-Power and Lossy Networks) has emerged as the de facto standard for IoT routing, offering robust, energy-efficient, and scalable communication. However, its susceptibility to it unique cyber-security attacks demands robust security enhancements to ensure reliable deployment. Although Intrusion Detection Systems (IDS) offer a proactive defense mechanism to mitigate RPL's inherent vulnerabilities, traditional IDS solutions are often too resource-intensive for IoT environments. Therefore, there is a critical need for lightweight-yet-accurate IDS frameworks specifically designed for RPL-based networks. In this paper, we propose a novel two-tier intrusion detection system, DTranIDS, designed to effectively identify and classify RPL-specific attacks in IoT environments. In the first tier, a Decision Tree classifier rapidly filters incoming data to determine whether a given instance is benign or malicious. In the second tier, a Transformer-based model is employed to precisely classify the specific type of detected attack. The proposed model is evaluated using the ROUT-4-2023 dataset, which includes four common RPL routing attacks: Blackhole, Flooding, Version Number, and Decreased Rank. Experimental results demonstrate that DTranIDS achieves an overall accuracy of 97%, with precision, recall, and F1-score values all around 96%, significantly outperforming several state-of-the-art IoT intrusion detection methods (which typically achieve 88–91% accuracy). Moreover, DTranIDS show its efficiency in fast intrusion detection (about 0.4 s), indicating that DTranIDS is well-suited for real-world, resource-constrained IoT environments, offering both real-time intrusion detection and detailed attack classification capabilities to aid cybersecurity analysts.
Papers List
List of archived papers
Adaptive Hybrid TRCA–CORRCA algorithm for enhanced accuracy in SSVEP-based brain-computer interfaces
Sepehr Tayebeh Khabbaz - Sina Tayebeh Khabbaz - Arshia Barani - Arsalan Ganjeh - Sasan Harifi - Seyed Mohsen Mirhosseini
Islamic Geometric algorithms: A survey
Elham Akbari - Azam Bastanfard
Disturbance Rejection in Quadruple-Tank System by Proposing New Method in Reinforcement Learning
Alireza Nezamzadeh - Mohammadreza Esmaeilidehkordi
An optimal workflow scheduling method in cloud-fog computing using three-objective Harris-Hawks algorithm
Ahmadreza Montazerolghaem - Maryam Khosravi - Fatemeh Rezaee
Spatial-channel attention-based stochastic neighboring embedding pooling and long short term memory for lung nodules classification
AHMED SAIHOOD - HOSSEIN KARSHENAS - AHMADREZA NAGHSH NILCHI
Investigating the Behavior of Generation Z Customers in Online Banking Services (Case Study of a Bank of Iran)
Elham Mahmoudabadi - Esmaeil Mollaahmadi
Introducing Meta-Contrastive Adaptive Autoencoder to Tackle Cold-Start Challenges in Sparse Domains
Hossein Rashid - Erfan Arzhmand - Fatemeh Hosseini
Information Theoretic Learning-based Deep Embedded Clustering (ITL-DEC)
Hoda Shad - Mona Zamiri - Tahereh Bahreini - Reza Monsefi - Ghoshe Abed Hodtani
Design and Simulation of a Low PDP Full Adder by Combining Majority Function and TGDI Technique in CNTFET Technology
Mahsa Mohammadi
Beyond Appearance: Transformer-based Person Identification from Conversational Dynamics
Masoumeh Chapariniya - Teodora Vukovic - Sarah Ebling - Volker Dellwo
more
Samin Hamayesh - Version 43.7.0
