TCP FIN Flood Attack Pattern Recognition on Internet of Things with Rule Based Signature Analysis

Deris Stiawan, Dimas Wahyudi, Ahmad Heryanto, Samsuryadi Samsuryadi, Mohd. Yazid Idris, Farkhana Muchtar, Mohammed Abdullah Alzahrani, Rahmat Budiarto

Abstract


Focus of this research is TCP FIN flood attack pattern recognition in Internet of Things (IoT) network using rule based signature analysis method. Dataset is taken based on three scenario normal, attack and normal-attack. The process of identification and recognition of TCP FIN flood attack pattern is done based on observation and analysis of packet attribute from raw data (pcap) using a feature extraction and feature selection method. Further testing was conducted using snort as an IDS. The results of the confusion matrix detection rate evaluation against the snort as IDS show the average percentage of the precision level.


Full Text:

PDF



International Journal of Online and Biomedical Engineering (iJOE) – eISSN: 2626-8493
Creative Commons License
Indexing:
Scopus logo Clarivate Analyatics ESCI logo IET Inspec logo DOAJ logo DBLP logo EBSCO logo Ulrich's logo Google Scholar logo MAS logo