OpenLB
Open Library of Bioscience
Advanced Search
Sensors (Basel, Switzerland)
Aug 16, 2022;22 (16):

A Blockchain-Enabled Secure Digital Twin Framework for Early Botnet Detection in IIoT Environment.

Mikail Mohammed Salim, Alowonou Kowovi Comivi, Tojimurotov Nurbek, Heejae Park, Jong Hyuk Park
Author Information
  1. Mikail Mohammed Salim: Department of Computer Science and Engineering, Seoul National University of Science and Technology (SeoulTech), Seoul 01811, Korea. ORCID
  2. Alowonou Kowovi Comivi: Department of Computer Science and Engineering, Seoul National University of Science and Technology (SeoulTech), Seoul 01811, Korea.
  3. Tojimurotov Nurbek: Department of Computer Science and Engineering, Seoul National University of Science and Technology (SeoulTech), Seoul 01811, Korea.
  4. Heejae Park: Department of Computer Science and Engineering, Seoul National University of Science and Technology (SeoulTech), Seoul 01811, Korea.
  5. Jong Hyuk Park: Department of Computer Science and Engineering, Seoul National University of Science and Technology (SeoulTech), Seoul 01811, Korea. ORCID
PMID: 36015892 DOI: 10.3390/s22166133

Abstract

Resource constraints in the Industrial Internet of Things (IIoT) result in brute-force attacks, transforming them into a botnet to launch Distributed Denial of Service Attacks. The delayed detection of botnet formation presents challenges in controlling the spread of malicious scripts in other devices and increases the probability of a high-volume cyberattack. In this paper, we propose a secure Blockchain-enabled Digital Framework for the early detection of Bot formation in a Smart Factory environment. A Digital Twin (DT) is designed for a group of devices on the edge layer to collect device data and inspect packet headers using Deep Learning for connections with external unique IP addresses with open connections. Data are synchronized between the DT and a Packet Auditor (PA) for detecting corrupt device data transmission. Smart Contracts authenticate the DT and PA, ensuring malicious nodes do not participate in data synchronization. Botnet spread is prevented using DT certificate revocation. A comparative analysis of the proposed framework with existing studies demonstrates that the synchronization of data between the DT and PA ensures data integrity for the Botnet detection model training. Data privacy is maintained by inspecting only Packet headers, thereby not requiring the decryption of encrypted data.

Keywords

blockchain botnet detection cybersecurity digital twin smart contracts

References

  1. Sensors (Basel). 2021 May 24;21(11): [PMID: 34073975]
  2. Sensors (Basel). 2022 Jan 31;22(3): [PMID: 35161838]
  3. Sensors (Basel). 2022 Apr 30;22(9): [PMID: 35591115]

Grants

  1. 2022R1F1A1071926/National Research Foundation of Korea

MeSH Term

Blockchain
Computer Security
Environment
Internet of Things
Privacy
Journal Article

Word Cloud

Created with Highcharts 10.0.0dataDTdetectionbotnetDigitalPABotnetIIoTformationspreadmaliciousdevicesFrameworkSmartTwindeviceheadersusingconnectionsDataPacketsynchronizationResourceconstraintsIndustrialInternetThingsresultbrute-forceattackstransforminglaunchDistributedDenialServiceAttacksdelayedpresentschallengescontrollingscriptsincreasesprobabilityhigh-volumecyberattackpaperproposesecureBlockchain-enabledearlyBotFactoryenvironmentdesignedgroupedgelayercollectinspectpacketDeepLearningexternaluniqueIPaddressesopensynchronizedAuditordetectingcorrupttransmissionContractsauthenticateensuringnodesparticipatepreventedcertificaterevocationcomparativeanalysisproposedframeworkexistingstudiesdemonstratesensuresintegritymodeltrainingprivacymaintainedinspectingtherebyrequiringdecryptionencryptedBlockchain-EnabledSecureEarlyDetectionEnvironmentblockchaincybersecuritydigitaltwinsmartcontracts

Similar Articles

Cited By