{"id":"https://openalex.org/W3120127977","doi":"https://doi.org/10.1109/iotm.0001.2000015","title":"Network Traffic Analysis for Threat Detection in the Internet of Things","display_name":"Network Traffic Analysis for Threat Detection in the Internet of Things","publication_year":2020,"publication_date":"2020-12-01","ids":{"openalex":"https://openalex.org/W3120127977","doi":"https://doi.org/10.1109/iotm.0001.2000015","mag":"3120127977"},"language":"en","primary_location":{"id":"doi:10.1109/iotm.0001.2000015","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iotm.0001.2000015","pdf_url":null,"source":{"id":"https://openalex.org/S4210201254","display_name":"IEEE Internet of Things Magazine","issn_l":"2576-3180","issn":["2576-3180","2576-3199"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Magazine","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://research-information.bris.ac.uk/en/publications/0db09e1c-eb63-433b-8e06-56650aa0bea1","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5089637331","display_name":"Mohammad Hammoudeh","orcid":"https://orcid.org/0000-0003-1058-0996"},"institutions":[{"id":"https://openalex.org/I4210139749","display_name":"Engineering Arts (United States)","ror":"https://ror.org/04g1y2z78","country_code":"US","type":"company","lineage":["https://openalex.org/I4210139749"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Mohammad Hammoudeh","raw_affiliation_strings":["Arts Sciences & Technology University"],"affiliations":[{"raw_affiliation_string":"Arts Sciences & Technology University","institution_ids":["https://openalex.org/I4210139749"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032204352","display_name":"John Pimlott","orcid":null},"institutions":[{"id":"https://openalex.org/I11983389","display_name":"Manchester Metropolitan University","ror":"https://ror.org/02hstj355","country_code":"GB","type":"education","lineage":["https://openalex.org/I11983389"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"John Pimlott","raw_affiliation_strings":["Manchester Metropolitan University, Manchester, UK"],"affiliations":[{"raw_affiliation_string":"Manchester Metropolitan University, Manchester, UK","institution_ids":["https://openalex.org/I11983389"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044341219","display_name":"Sana Belguith","orcid":"https://orcid.org/0000-0003-0069-8552"},"institutions":[{"id":"https://openalex.org/I54459138","display_name":"University of Salford","ror":"https://ror.org/01tmqtf75","country_code":"GB","type":"education","lineage":["https://openalex.org/I54459138"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Sana Belguith","raw_affiliation_strings":["School of Computing, University of Salford, Manchester, UK"],"affiliations":[{"raw_affiliation_string":"School of Computing, University of Salford, Manchester, UK","institution_ids":["https://openalex.org/I54459138"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043277300","display_name":"Gregory Epiphaniou","orcid":"https://orcid.org/0000-0003-1054-6368"},"institutions":[{"id":"https://openalex.org/I119664326","display_name":"University of Wolverhampton","ror":"https://ror.org/01k2y1055","country_code":"GB","type":"education","lineage":["https://openalex.org/I119664326"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Gregory Epiphaniou","raw_affiliation_strings":["University of Wolverhampton, Wolverhampton, UK"],"affiliations":[{"raw_affiliation_string":"University of Wolverhampton, Wolverhampton, UK","institution_ids":["https://openalex.org/I119664326"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5065487579","display_name":"Thar Baker","orcid":"https://orcid.org/0000-0002-5166-4873"},"institutions":[{"id":"https://openalex.org/I29891158","display_name":"University of Sharjah","ror":"https://ror.org/00engpz63","country_code":"AE","type":"education","lineage":["https://openalex.org/I29891158"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Thar Baker","raw_affiliation_strings":["University of Sharjah, Sharjah, United Arab Emirates"],"affiliations":[{"raw_affiliation_string":"University of Sharjah, Sharjah, United Arab Emirates","institution_ids":["https://openalex.org/I29891158"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008691045","display_name":"A. S. M. Kayes","orcid":"https://orcid.org/0000-0002-2421-2214"},"institutions":[{"id":"https://openalex.org/I196829312","display_name":"La Trobe University","ror":"https://ror.org/01rxfrp27","country_code":"AU","type":"education","lineage":["https://openalex.org/I196829312"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"A. S. M. Kayes","raw_affiliation_strings":["Department of Computer Science and Information Technology, La Trobe University, Melbourne, VIC, Australia"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Technology, La Trobe University, Melbourne, VIC, Australia","institution_ids":["https://openalex.org/I196829312"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031253024","display_name":"Bamidele Adebisi","orcid":"https://orcid.org/0000-0001-9071-9120"},"institutions":[{"id":"https://openalex.org/I12789410","display_name":"Ahmadu Bello University","ror":"https://ror.org/019apvn83","country_code":"NG","type":"education","lineage":["https://openalex.org/I12789410"]}],"countries":["NG"],"is_corresponding":false,"raw_author_name":"Bamidele Adebisi","raw_affiliation_strings":["Ahmadu Bello University, Zaria, Nigeria"],"affiliations":[{"raw_affiliation_string":"Ahmadu Bello University, Zaria, Nigeria","institution_ids":["https://openalex.org/I12789410"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5079720434","display_name":"Ahc\u00e8ne Bounceur","orcid":"https://orcid.org/0000-0002-0043-7742"},"institutions":[{"id":"https://openalex.org/I161929037","display_name":"Universit\u00e9 de Bretagne Occidentale","ror":"https://ror.org/01b8h3982","country_code":"FR","type":"education","lineage":["https://openalex.org/I161929037"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Ahcene Bounceur","raw_affiliation_strings":["University of Brest, Brest, France"],"affiliations":[{"raw_affiliation_string":"University of Brest, Brest, France","institution_ids":["https://openalex.org/I161929037"]}]}],"institutions":[],"countries_distinct_count":6,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5089637331"],"corresponding_institution_ids":["https://openalex.org/I4210139749"],"apc_list":null,"apc_paid":null,"fwci":1.1328,"has_fulltext":true,"cited_by_count":13,"citation_normalized_percentile":{"value":0.81090967,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"3","issue":"4","first_page":"40","last_page":"45"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/telnet","display_name":"Telnet","score":0.9718714356422424},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.8939094543457031},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7536170482635498},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7138985395431519},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.703727662563324},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.5519803762435913},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.4989755153656006},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.490686297416687},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.4842112064361572},{"id":"https://openalex.org/keywords/sniffing","display_name":"Sniffing","score":0.4784519672393799},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.4141339063644409},{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.41011911630630493},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.17150384187698364},{"id":"https://openalex.org/keywords/file-transfer-protocol","display_name":"File Transfer Protocol","score":0.14045491814613342},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.07325297594070435}],"concepts":[{"id":"https://openalex.org/C2776538122","wikidata":"https://www.wikidata.org/wiki/Q160470","display_name":"Telnet","level":4,"score":0.9718714356422424},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.8939094543457031},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7536170482635498},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7138985395431519},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.703727662563324},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.5519803762435913},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.4989755153656006},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.490686297416687},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.4842112064361572},{"id":"https://openalex.org/C131722271","wikidata":"https://www.wikidata.org/wiki/Q7547759","display_name":"Sniffing","level":2,"score":0.4784519672393799},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4141339063644409},{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.41011911630630493},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.17150384187698364},{"id":"https://openalex.org/C169485995","wikidata":"https://www.wikidata.org/wiki/Q42283","display_name":"File Transfer Protocol","level":3,"score":0.14045491814613342},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.07325297594070435},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C169760540","wikidata":"https://www.wikidata.org/wiki/Q207011","display_name":"Neuroscience","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1109/iotm.0001.2000015","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iotm.0001.2000015","pdf_url":null,"source":{"id":"https://openalex.org/S4210201254","display_name":"IEEE Internet of Things Magazine","issn_l":"2576-3180","issn":["2576-3180","2576-3199"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Magazine","raw_type":"journal-article"},{"id":"pmh:oai:research-information.bris.ac.uk:openaire_cris_publications/0db09e1c-eb63-433b-8e06-56650aa0bea1","is_oa":true,"landing_page_url":"https://research-information.bris.ac.uk/en/publications/0db09e1c-eb63-433b-8e06-56650aa0bea1","pdf_url":null,"source":{"id":"https://openalex.org/S4306400895","display_name":"Bristol Research (University of Bristol)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I36234482","host_organization_name":"University of Bristol","host_organization_lineage":["https://openalex.org/I36234482"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hammoudeh, M, Pimlott, J, Belguith, S, Epiphaniou, G, Baker, T, Kayes, A S M, Adebisi, B & Bounceur, A 2020, 'Network traffic analysis for threat detection in the internet of things', IEEE Internet of Things Magazine, vol. 3, no. 4, 9319630, pp. 40-45. https://doi.org/10.1109/IOTM.0001.2000015","raw_type":"info:eu-repo/semantics/publishedVersion"},{"id":"pmh:oai:usir.salford.ac.uk:56773","is_oa":true,"landing_page_url":null,"pdf_url":"http://usir.salford.ac.uk/id/eprint/56773/1/IoT_Traffic_Analysis.pdf","source":{"id":"https://openalex.org/S4306401501","display_name":"University of Salford Institutional Repository (University of Salford)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I54459138","host_organization_name":"University of Salford","host_organization_lineage":["https://openalex.org/I54459138"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Article"},{"id":"pmh:oai:research-information.bris.ac.uk:openaire/0db09e1c-eb63-433b-8e06-56650aa0bea1","is_oa":true,"landing_page_url":"https://hdl.handle.net/1983/0db09e1c-eb63-433b-8e06-56650aa0bea1","pdf_url":null,"source":{"id":"https://openalex.org/S4306400895","display_name":"Bristol Research (University of Bristol)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I36234482","host_organization_name":"University of Bristol","host_organization_lineage":["https://openalex.org/I36234482"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Hammoudeh, M, Pimlott, J, Belguith, S, Epiphaniou, G, Baker, T, Kayes, A S M, Adebisi, B & Bounceur, A 2020, 'Network traffic analysis for threat detection in the internet of things', IEEE Internet of Things Magazine, vol. 3, no. 4, 9319630, pp. 40-45. https://doi.org/10.1109/IOTM.0001.2000015","raw_type":"info:eu-repo/semantics/publishedVersion"}],"best_oa_location":{"id":"pmh:oai:research-information.bris.ac.uk:openaire_cris_publications/0db09e1c-eb63-433b-8e06-56650aa0bea1","is_oa":true,"landing_page_url":"https://research-information.bris.ac.uk/en/publications/0db09e1c-eb63-433b-8e06-56650aa0bea1","pdf_url":null,"source":{"id":"https://openalex.org/S4306400895","display_name":"Bristol Research (University of Bristol)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I36234482","host_organization_name":"University of Bristol","host_organization_lineage":["https://openalex.org/I36234482"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hammoudeh, M, Pimlott, J, Belguith, S, Epiphaniou, G, Baker, T, Kayes, A S M, Adebisi, B & Bounceur, A 2020, 'Network traffic analysis for threat detection in the internet of things', IEEE Internet of Things Magazine, vol. 3, no. 4, 9319630, pp. 40-45. https://doi.org/10.1109/IOTM.0001.2000015","raw_type":"info:eu-repo/semantics/publishedVersion"},"sustainable_development_goals":[{"score":0.5400000214576721,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":16,"referenced_works":["https://openalex.org/W2532424365","https://openalex.org/W2748868501","https://openalex.org/W2750688159","https://openalex.org/W2773898581","https://openalex.org/W2897934207","https://openalex.org/W2901508923","https://openalex.org/W2912747059","https://openalex.org/W2942874836","https://openalex.org/W2966623585","https://openalex.org/W2981340892","https://openalex.org/W2981857667","https://openalex.org/W2987845144","https://openalex.org/W3005965793","https://openalex.org/W3144192494","https://openalex.org/W6743493502","https://openalex.org/W6773222727"],"related_works":["https://openalex.org/W3130325379","https://openalex.org/W2305179110","https://openalex.org/W2294483539","https://openalex.org/W4206308447","https://openalex.org/W2474732902","https://openalex.org/W1646536569","https://openalex.org/W2969718820","https://openalex.org/W2372881387","https://openalex.org/W2380792414","https://openalex.org/W2393825001"],"abstract_inverted_index":{"As":[0],"the":[1,4,18,56,87,118,129],"prevalence":[2],"of":[3,6,136,143,151],"Internet":[5],"Things":[7],"(IoT)":[8],"continues":[9],"to":[10,16,32,53,65,75,102],"increase,":[11],"cyber":[12],"criminals":[13],"are":[14,24,45],"quick":[15],"exploit":[17],"security":[19],"gaps":[20],"that":[21,63],"many":[22,38],"devices":[23],"inherently":[25],"designed":[26],"with.":[27],"Users":[28],"cannot":[29],"be":[30,51,66],"expected":[31],"tackle":[33],"this":[34],"threat":[35],"alone,":[36],"and":[37,78,98,113,124,140],"current":[39],"solutions":[40],"available":[41],"for":[42,55,83,146],"network":[43,90,95],"monitoring":[44],"simply":[46],"not":[47],"accessible":[48],"or":[49],"can":[50,132],"difficult":[52],"implement":[54],"average":[57],"user,":[58],"which":[59],"is":[60],"a":[61,99],"gap":[62],"needs":[64],"addressed.":[67],"This":[68],"article":[69],"presents":[70],"an":[71,147],"effective":[72],"signature-based":[73],"solution":[74,108,131],"monitor,":[76],"analyze,":[77],"detect":[79,133],"potentially":[80],"malicious":[81,137],"traffic":[82,139,145],"IoT":[84],"ecosystems":[85],"in":[86],"typical":[88],"home":[89],"environment":[91],"by":[92,117],"utilizing":[93],"passive":[94],"sniffing":[96],"techniques":[97],"cloud":[100],"application":[101],"monitor":[103],"anomalous":[104],"activity.":[105],"The":[106],"proposed":[107,130],"focuses":[109],"on":[110],"two":[111],"attack":[112],"propagation":[114],"vectors":[115],"leveraged":[116],"infamous":[119],"Mirai":[120],"botnet,":[121],"namely":[122],"DNS":[123,138],"Telnet.":[125],"Experimental":[126],"evaluation":[127],"demonstrates":[128],"98.35":[134],"percent":[135,142],"99.33":[141],"Telnet":[144],"overall":[148],"detection":[149],"accuracy":[150],"98.84":[152],"percent.":[153]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":1}],"updated_date":"2026-04-19T08:26:33.389920","created_date":"2025-10-10T00:00:00"}