{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,19]],"date-time":"2026-03-19T13:13:15Z","timestamp":1773925995201,"version":"3.50.1"},"reference-count":54,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2016,12,9]],"date-time":"2016-12-09T00:00:00Z","timestamp":1481241600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Internet Technol."],"published-print":{"date-parts":[[2016,12,22]]},"abstract":"Security and privacy of data are one of the prime concerns in today\u2019s Internet of Things (IoT). Conventional security techniques like signature-based detection of malware and regular updates of a signature database are not feasible solutions as they cannot secure such systems effectively, having limited resources. Programming languages permitting immediate memory accesses through pointers often result in applications having memory-related errors, which may lead to unpredictable failures and security vulnerabilities. Furthermore, energy efficient IoT devices running on batteries cannot afford the implementation of cryptography algorithms as such techniques have significant impact on the system power consumption. Therefore, in order to operate IoT in a secure manner, the system must be able to detect and prevent any kind of intrusions before the network (i.e., sensor nodes and base station) is destabilised by the attackers. In this article, we have presented an intrusion detection and prevention mechanism by implementing an intelligent security architecture using random neural networks (RNNs). The application\u2019s source code is also instrumented at compile time in order to detect out-of-bound memory accesses. It is based on creating tags, to be coupled with each memory allocation and then placing additional tag checking instructions for each access made to the memory. To validate the feasibility of the proposed security solution, it is implemented for an existing IoT system and its functionality is practically demonstrated by successfully detecting the presence of any suspicious sensor node within the system operating range and anomalous activity in the base station with an accuracy of 97.23%. Overall, the proposed security solution has presented a minimal performance overhead.<\/jats:p>","DOI":"10.1145\/2990499","type":"journal-article","created":{"date-parts":[[2016,12,9]],"date-time":"2016-12-09T17:26:14Z","timestamp":1481304374000},"page":"1-25","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":79,"title":["Intelligent Intrusion Detection in Low-Power IoTs"],"prefix":"10.1145","volume":"16","author":[{"given":"Ahmed","family":"Saeed","sequence":"first","affiliation":[{"name":"School of Engineering and Built Environment, Glasgow Caledonian University, Glasgow, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ali","family":"Ahmadinia","sequence":"additional","affiliation":[{"name":"Department of Computer Science, California State University San Marcos, CA, US"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Abbas","family":"Javed","sequence":"additional","affiliation":[{"name":"School of Engineering and Built Environment, Glasgow Caledonian University, Glasgow, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hadi","family":"Larijani","sequence":"additional","affiliation":[{"name":"School of Engineering and Built Environment, Glasgow Caledonian University, Glasgow, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2016,12,9]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"Proceedings of the IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN\u201900)","volume":"4","author":"Abdelbaki Hossam","unstructured":"Hossam Abdelbaki , Erol Gelenbe , and Said E . El-Khamy. 2000. Analog hardware implementation of the random neural network model . In Proceedings of the IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN\u201900) , Vol. 4 . IEEE, 197--201. Hossam Abdelbaki, Erol Gelenbe, and Said E. El-Khamy. 2000. Analog hardware implementation of the random neural network model. In Proceedings of the IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN\u201900), Vol. 4. IEEE, 197--201."},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1007\/BF01238026"},{"key":"e_1_2_1_3_1","volume-title":"Proceedings of the USENIX Security Symposium. 51--66","author":"Akritidis Periklis","year":"2009","unstructured":"Periklis Akritidis , Manuel Costa , Miguel Castro , and Steven Hand . 2009 . Baggy bounds checking: An efficient and backwards-compatible defense against out-of-bounds errors . In Proceedings of the USENIX Security Symposium. 51--66 . Periklis Akritidis, Manuel Costa, Miguel Castro, and Steven Hand. 2009. Baggy bounds checking: An efficient and backwards-compatible defense against out-of-bounds errors. In Proceedings of the USENIX Security Symposium. 51--66."},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCC.2004.843217"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.3390\/s90503447"},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1002\/spe.v36:9"},{"key":"e_1_2_1_7_1","volume-title":"Proceedings of the USENIX Security Symposium. 45--56","author":"Avijit Kumar","year":"2004","unstructured":"Kumar Avijit , Prateek Gupta , and Deepak Gupta . 2004 . TIED, LibsafePlus: Tools for runtime buffer overflow protection . In Proceedings of the USENIX Security Symposium. 45--56 . Kumar Avijit, Prateek Gupta, and Deepak Gupta. 2004. TIED, LibsafePlus: Tools for runtime buffer overflow protection. In Proceedings of the USENIX Security Symposium. 45--56."},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SURV.2013.052213.00046"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/SURV.2013.050113.00191"},{"key":"e_1_2_1_10_1","volume-title":"Proceedings of the 2014 IEEE 19th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD\u201914)","author":"Callegari C.","unstructured":"C. Callegari , S. Giordano , and M. Pagano . 2014. Neural network based anomaly detection . In Proceedings of the 2014 IEEE 19th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD\u201914) . 310--314. C. Callegari, S. Giordano, and M. Pagano. 2014. Neural network based anomaly detection. In Proceedings of the 2014 IEEE 19th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD\u201914). 310--314."},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/1133981.1133999"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2010.215"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1162\/neco.1989.1.4.502"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1162\/neco.1990.2.2.239"},{"key":"e_1_2_1_15_1","volume-title":"Product-form queueing networks with negative and positive customers. Journal of Applied Probability","author":"Gelenbe Erol","year":"1991","unstructured":"Erol Gelenbe . 1991. Product-form queueing networks with negative and positive customers. Journal of Applied Probability ( 1991 ), 656--663. Erol Gelenbe. 1991. Product-form queueing networks with negative and positive customers. Journal of Applied Probability (1991), 656--663."},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1162\/neco.1993.5.1.154"},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNN.2002.804228"},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.peva.2010.07.006"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2015.2388550"},{"key":"e_1_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCB.2005.860136"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2259016.2259034"},{"key":"e_1_2_1_22_1","unstructured":"HOPERF. Accessed: 15-9-2015. RFM69 ISM Transceiver Module. Retrieved from http:\/\/www.hoperf.cn\/upload\/rf\/RFM69-V1.3.pdf. HOPERF. Accessed: 15-9-2015. RFM69 ISM Transceiver Module. Retrieved from http:\/\/www.hoperf.cn\/upload\/rf\/RFM69-V1.3.pdf."},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1049\/iet-net.2015.0020"},{"key":"e_1_2_1_24_1","first-page":"1","article-title":"Smart random neural network controller for HVAC using cloud computing technology","volume":"99","author":"Javed A.","year":"2016","unstructured":"A. Javed , H. Larijani , A. Ahmadinia , and D. Gibson . 2016 . Smart random neural network controller for HVAC using cloud computing technology . IEEE Transactions on Industrial Informatics PP , 99 (2016), 1 -- 1 . A. Javed, H. Larijani, A. Ahmadinia, and D. Gibson. 2016. Smart random neural network controller for HVAC using cloud computing technology. IEEE Transactions on Industrial Informatics PP, 99 (2016), 1--1.","journal-title":"IEEE Transactions on Industrial Informatics PP"},{"key":"e_1_2_1_25_1","volume-title":"Proceedings of the 3rd International Workshop on Automatic Debugging. Citeseer, 13--26","author":"Richard W.","unstructured":"Richard W. M. Jones and Paul H. J. Kelly. 1997. Backwards-compatible bounds checking for arrays and pointers in C programs . In Proceedings of the 3rd International Workshop on Automatic Debugging. Citeseer, 13--26 . Richard W. M. Jones and Paul H. J. Kelly. 1997. Backwards-compatible bounds checking for arrays and pointers in C programs. In Proceedings of the 3rd International Workshop on Automatic Debugging. Citeseer, 13--26."},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/2442087.2442088"},{"key":"e_1_2_1_27_1","volume-title":"Spafford","author":"Kumar Sandeep","year":"1994","unstructured":"Sandeep Kumar and Eugene H . Spafford . 1994 . An Application of Pattern Matching in Intrusion Detection. Technical Report. Department of Computer Sciences, Purdue University . Sandeep Kumar and Eugene H. Spafford. 1994. An Application of Pattern Matching in Intrusion Detection. Technical Report. Department of Computer Sciences, Purdue University."},{"key":"e_1_2_1_28_1","volume-title":"A new intrusion detection system based on KNN classification algorithm in wireless sensor network. Journal of Electrical and Computing Engineering","author":"Li Wenchao","year":"2014","unstructured":"Wenchao Li , Ping Yi , Yue Wu , Li Pan , and Jianhua Li. 2014. A new intrusion detection system based on KNN classification algorithm in wireless sensor network. Journal of Electrical and Computing Engineering ( 2014 ). Wenchao Li, Ping Yi, Yue Wu, Li Pan, and Jianhua Li. 2014. A new intrusion detection system based on KNN classification algorithm in wireless sensor network. Journal of Electrical and Computing Engineering (2014)."},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0377-2217(99)00482-8"},{"key":"e_1_2_1_30_1","volume-title":"Proceedings of the Workshop on the Evaluation of Software Defect Detection Tools. 1--5.","author":"Lu Shan","year":"2005","unstructured":"Shan Lu , Zhenmin Li , Feng Qin , Lin Tan , Pin Zhou , and Yuanyuan Zhou . 2005 . Bugbench: Benchmarks for evaluating bug detection tools . In Proceedings of the Workshop on the Evaluation of Software Defect Detection Tools. 1--5. Shan Lu, Zhenmin Li, Feng Qin, Lin Tan, Pin Zhou, and Yuanyuan Zhou. 2005. Bugbench: Benchmarks for evaluating bug detection tools. In Proceedings of the Workshop on the Evaluation of Software Defect Detection Tools. 1--5."},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2010.32"},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.adhoc.2012.02.016"},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1109\/TCSVT.2002.806808"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/1542476.1542504"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1145\/1065887.1065892"},{"key":"e_1_2_1_36_1","volume-title":"Advanced Encryption Standard: U","author":"NIST.","unstructured":"NIST. 2001. Advanced Encryption Standard: U . S. National Institute of Standards and Technology (NIST) : Federal Information Processing Standards Publication (FIPS PUBS) 197. Retrievevd from http:\/\/csrc.nist.gov\/publications\/fips\/fips197\/fips-197.pdf. NIST. 2001. Advanced Encryption Standard: U.S. National Institute of Standards and Technology (NIST): Federal Information Processing Standards Publication (FIPS PUBS) 197. Retrievevd from http:\/\/csrc.nist.gov\/publications\/fips\/fips197\/fips-197.pdf."},{"key":"e_1_2_1_37_1","first-page":"14","article-title":"Smashing the stack for fun and profit","volume":"7","author":"One Aleph","year":"1996","unstructured":"Aleph One . 1996 . Smashing the stack for fun and profit . Phrack Magazine 7 , 49 (1996), 14 -- 16 . Aleph One. 1996. Smashing the stack for fun and profit. Phrack Magazine 7, 49 (1996), 14--16.","journal-title":"Phrack Magazine"},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1109\/LES.2012.2218630"},{"key":"e_1_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.adhoc.2013.04.014"},{"key":"e_1_2_1_40_1","unstructured":"RSA. 2003. Public-Key Cryptography Standards (PKCS): RSA Cryptography Specifications Version 2.1. Retrieved from https:\/\/tools.ietf.org\/html\/rfc3447. RSA. 2003. Public-Key Cryptography Standards (PKCS): RSA Cryptography Specifications Version 2.1. Retrieved from https:\/\/tools.ietf.org\/html\/rfc3447."},{"key":"e_1_2_1_41_1","volume-title":"Proceedings of the 11th Annual Network and Distributed System Security Symposium.","author":"Ruwase Olatunji","unstructured":"Olatunji Ruwase and Monica S. Lam . 2004. A practical dynamic buffer overflow detector . In Proceedings of the 11th Annual Network and Distributed System Security Symposium. Olatunji Ruwase and Monica S. Lam. 2004. A practical dynamic buffer overflow detector. In Proceedings of the 11th Annual Network and Distributed System Security Symposium."},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.26"},{"key":"e_1_2_1_43_1","volume-title":"USENIX ATC","volume":"2012","author":"Serebryany Konstantin","year":"2012","unstructured":"Konstantin Serebryany , Derek Bruening , Alexander Potapenko , and Dmitry Vyukov . 2012 . AddressSanitizer: A fast address sanity checker . In USENIX ATC , Vol. 2012 . Konstantin Serebryany, Derek Bruening, Alexander Potapenko, and Dmitry Vyukov. 2012. AddressSanitizer: A fast address sanity checker. In USENIX ATC, Vol. 2012."},{"key":"e_1_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/1037947.1024404"},{"key":"e_1_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-87536-9_21"},{"key":"e_1_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1093\/comjnl\/bxp032"},{"key":"e_1_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2015.7"},{"key":"e_1_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1109\/MITP.2009.89"},{"key":"e_1_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076739"},{"key":"e_1_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.asoc.2009.06.019"},{"key":"e_1_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2014.2300753"},{"key":"e_1_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTAS.2013.6531076"},{"key":"e_1_2_1_53_1","unstructured":"Yves Younan. 2014. 25 Years of Vulnerabilities: 1988-2012. Retrieved from http:\/\/labs.snort.org\/blogfiles\/Sourcefire\\-25-Years-of-Vulnerabilities-Research-Report.pdf. Yves Younan. 2014. 25 Years of Vulnerabilities: 1988-2012. Retrieved from http:\/\/labs.snort.org\/blogfiles\/Sourcefire\\-25-Years-of-Vulnerabilities-Research-Report.pdf."},{"key":"e_1_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/1755688.1755707"}],"container-title":["ACM Transactions on Internet Technology"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2990499","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2990499","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T21:15:24Z","timestamp":1750281324000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2990499"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,12,9]]},"references-count":54,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2016,12,22]]}},"alternative-id":["10.1145\/2990499"],"URL":"https:\/\/doi.org\/10.1145\/2990499","relation":{},"ISSN":["1533-5399","1557-6051"],"issn-type":[{"value":"1533-5399","type":"print"},{"value":"1557-6051","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016,12,9]]},"assertion":[{"value":"2015-11-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2016-08-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2016-12-09","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}