English

Revisiting IoT Device Identification

Cryptography and Security 2021-07-19 v1 Machine Learning

Abstract

Internet-of-Things (IoT) devices are known to be the source of many security problems, and as such, they would greatly benefit from automated management. This requires robustly identifying devices so that appropriate network security policies can be applied. We address this challenge by exploring how to accurately identify IoT devices based on their network behavior, while leveraging approaches previously proposed by other researchers. We compare the accuracy of four different previously proposed machine learning models (tree-based and neural network-based) for identifying IoT devices. We use packet trace data collected over a period of six months from a large IoT test-bed. We show that, while all models achieve high accuracy when evaluated on the same dataset as they were trained on, their accuracy degrades over time, when evaluated on data collected outside the training set. We show that on average the models' accuracy degrades after a couple of weeks by up to 40 percentage points (on average between 12 and 21 percentage points). We argue that, in order to keep the models' accuracy at a high level, these need to be continuously updated.

Keywords

Cite

@article{arxiv.2107.07818,
  title  = {Revisiting IoT Device Identification},
  author = {Roman Kolcun and Diana Andreea Popescu and Vadim Safronov and Poonam Yadav and Anna Maria Mandalari and Richard Mortier and Hamed Haddadi},
  journal= {arXiv preprint arXiv:2107.07818},
  year   = {2021}
}

Comments

To appear in TMA 2021 conference. 9 pages, 6 figures. arXiv admin note: text overlap with arXiv:2011.08605

R2 v1 2026-06-24T04:15:34.591Z