TY - GEN
T1 - Explainable Intrusion Detection for Internet of Medical Things
AU - Memon, Shafique Ahmed
AU - Wiil, Uffe Kock
AU - Shaikh, Mutiullah
PY - 2023
Y1 - 2023
N2 - IoMT sensors are used for continuous real-time remote monitoring of patients’ health indicators. IoMT integrate several devices to capture sensitive medical data from devices such as implants and wearables that results in cost-effective and improved health. In IoT settings, the Message Queuing Telemetry Transport (MQTT) protocol is frequently used for machine-to-machine data transfer. However, secure transmission of sensitive health data is critical because these devices are resource constrained and are more vulnerable to MQTT based threats including brute force attack. This warrants a robust, effective, and reliable threat mitigation mechanism, while maintaining a fine balance between accuracy and interpretability. Based on a comprehensive overview of previous work and available datasets, we propose an explainable intrusion detection mechanism to detect MQTT-based attacks. The MQTT-IOT-IDS2020 dataset is used as a benchmark. Particle swarm optimization (PSO) is used for the selection of optimal features from the dataset. The performance of ten machine learning (ML) methods is evaluated and compared. The results demonstrate excellent classification accuracies between 97% and 99%. We applied LIME explanations to increase human interpretability for the best performing model.
AB - IoMT sensors are used for continuous real-time remote monitoring of patients’ health indicators. IoMT integrate several devices to capture sensitive medical data from devices such as implants and wearables that results in cost-effective and improved health. In IoT settings, the Message Queuing Telemetry Transport (MQTT) protocol is frequently used for machine-to-machine data transfer. However, secure transmission of sensitive health data is critical because these devices are resource constrained and are more vulnerable to MQTT based threats including brute force attack. This warrants a robust, effective, and reliable threat mitigation mechanism, while maintaining a fine balance between accuracy and interpretability. Based on a comprehensive overview of previous work and available datasets, we propose an explainable intrusion detection mechanism to detect MQTT-based attacks. The MQTT-IOT-IDS2020 dataset is used as a benchmark. Particle swarm optimization (PSO) is used for the selection of optimal features from the dataset. The performance of ten machine learning (ML) methods is evaluated and compared. The results demonstrate excellent classification accuracies between 97% and 99%. We applied LIME explanations to increase human interpretability for the best performing model.
KW - Explainable AI (XAI)
KW - Internet of Medical Things (IoMT)
KW - Internet of Things (IoT)
KW - Intrusion Detection (ID)
KW - Message Queuing Telemetry Transport (MQTT)
KW - Particle Swarm Optimization (PSO)
U2 - 10.5220/0012210300003598
DO - 10.5220/0012210300003598
M3 - Article in proceedings
SN - 978-989-758-671-2
T3 - Proceedings of the International Conference on Knowledge Engineering and Ontology Development IC3K
SP - 40
EP - 51
BT - Proceedings of the 15th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management - KMIS
A2 - Gruenwald, Le
A2 - Masciari, Elio
A2 - Rolland, Colette
A2 - Bernardino, Jorge
PB - SCITEPRESS Digital Library
T2 - 15th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management
Y2 - 13 November 2023 through 15 November 2023
ER -