Minority resampling boosted unsupervised learning with hyperdimensional computing for threat detection at the edge of internet of things

Abstract

The Internet of Things (IoT) has rapidly transformed digital environments across a multitude of domains with increased connectivity and pervasive virtualization. The distributed computing paradigm of Edge Computing has been postulated to overcome the concerns of response time, bandwidth, energy consumption, and cybersecurity. In comparison to the other concerns, limited studies have focused on cybersecurity, mainly due to the inherent complexity of threat detection at the Edge. However, the widespread adoption of IoT applications in economic, social, and political contexts is a stringent indication of the signi cant impact from cyber-attacks. This paper aims to address this challenge by presenting an effective and ef cient machine learning approach for threat detection at the Edge of IoT. The novel contributions of this approach are, a new Enhanced Geometric Synthetic Minority Oversampling Technique (EG-SMOTE) algorithm to resolve the imbalanced distribution of data streams at the IoT Edge, an extension to the Growing Self Organizing Map (GSOM) algorithm based on Hyperdimensional Computing for energy ef cient machine learning from unlabeled data streams. The proposed EG-SMOTE C GSOM approach has been tested using four open access datasets; three benchmark, KDD99 (F-ScoreD0.9360), NSL-KDD (F-ScoreD 0.9647), CICIDS2017 (F-Score D 0.9999), and one industry-focused botnet IoT traf c dataset, BoT-IoT (F-Score D 0.9445). The EG-SMOTE approach has outperformed SMOTE and G-SMOTE approaches in a vast number of experiments that are tried with different classi ers. The results of these experiments con rm the novelty, ef ciency and effectiveness of this approach for cybersecurity at the IoT Edge.