Login | Register

Anomaly Detection in IoT Devices using LogBERT


Anomaly Detection in IoT Devices using LogBERT

Vela, Eniela (2022) Anomaly Detection in IoT Devices using LogBERT. Masters thesis, Concordia University.

[thumbnail of Vela_MCompSci_F2022.pdf]
Text (application/pdf)
Vela_MCompSci_F2022.pdf - Accepted Version
Restricted to Repository staff only until 15 November 2024.
Available under License Spectrum Terms of Access.


A rapid increase in the use of the Internet of Things (IoT) devices by corporates and consumers
are changing the topology of the Internet. The design of IoT devices has often been centered
on completing functional requirements (⇝ observing, remote controlling), but has sporadically
ignored security requirements.
Recently, due to the increase in cyber-attacks on IoT devices, researchers have focused on
finding alternative machine-learning solutions. LogBERT is a newdeep-learning approach based
on the BERT algorithm, which has shown promising results in identifying anomalies in computer
logs. LogBERT incorporates two self-learning tasks, Masked Log Key Prediction (MLKP)
and Volume of Hypersphere Minimization (VHM). MLKP predicts random log keys and learns
contextual information about log sequences while VHM maps the data in a hypersphere where
the normal data are concentrated around the center and the abnormal data far from the center.
After training LogBERT on normal data, the LogBERT algorithm can identify the abnormal data
which deviate from the normal learned path.
In light of the positive results shown in computer logs, we propose to extend the usage of the
LogBERT algorithm in IoT data. Our experiment is based on using real-life data which we generated
by exploiting the six most common IoT devices; an indoor camera, outdoor camera, DVR,
two different home routers, and a smart light bulb, using three different malware that has different
architectures but similar exploitation techniques; Mirai botnet, RouterSploit, and UFONet.
Our experiment showed that LogBERT can be used for anomaly detection in IoT devices and that
it achieves better results than some existing machine or deep learning approaches.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Computer Science and Software Engineering
Item Type:Thesis (Masters)
Authors:Vela, Eniela
Institution:Concordia University
Degree Name:M. Comp. Sc.
Program:Computer Science
Date:November 2022
Thesis Supervisor(s):Jaafar, Fehmi and Jaumard, Brigitte
ID Code:991320
Deposited By: Eniela Vela
Deposited On:21 Jun 2023 14:44
Last Modified:21 Jun 2023 14:44
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Research related to the current document (at the CORE website)
- Research related to the current document (at the CORE website)
Back to top Back to top