BITS Faculty Publications
Permanent URI for this communityhttp://localhost:4000/handle/123456789/1867
Browse
Item Accelerating PUF-based UAV Authentication Protocols Using Programmable Switch(IEEE, 2022) Alladi, TejasviMany UAV technology use cases (e.g., traffic management) has ultra-low latency and strong security requirements. But achieving both simultaneously is challenging. In this work, we consider UAV device authentication as a use case and develop a fast and secure UAV device authentication system. Our key idea is to leverage highly secure Physically Unclonable Functions (PUFs) and high-speed programmable packet-processing data planes, and develop a practically deployable PUF-based authentication protocol for UAVs that is (a) robust to various security attacks, and (b) enables UAV authentication at network speed. In this work, we demonstrate the feasibility of our idea by offloading the authentication protocol to a Tofino-based highspeed programmable switch. Our preliminary experiments show that protocol offloading would reduce authentication latency significantly (approx. 100 %)Item Ambient Intelligence for Securing Intelligent Vehicular Networks: Edge-Enabled Intrusion and Anomaly Detection Strategies(IEEE, 2023-03) Alladi, Tejasvi; Chamola, VinayThe Internet of Things (IoT) is increasingly being deployed in smart city applications such as vehicular networks. The presence of a large number of communicating vehicles greatly increases the number and types of possible anomalies in the network. These anomalies could range from faulty vehicular data being broadcast by the vehicles to more catastrophic attacks such as disruptive attacks and Denial of Service (DoS) attacks to name a few. This calls for a need to develop robust security schemes such as intrusion detection and anomaly detection schemes. With a humongous growth in the amount of vehicular traffic data expected, artificial intelligence (AI)-based detection strategies need to be developed to address this burgeoning demand. In this article, we propose three AI-based intrusion detection strategies for vehicular network applications, leading to an effective Ambient Intelligence based vehicular network paradigm. The detection tasks are run on local edge servers deployed at the network edge. By showing the prediction results on an experimental testbed emulating the edge servers, we show the feasibility of deploying the proposed strategies in the vehicular network scenario.Item Applications of blockchain in unmanned aerial vehicles: A review(Elsevier, 2020-06) Alladi, Tejasvi; Chamola, VinayThe recent advancement in Unmanned Aerial Vehicles (UAVs) in terms of manufacturing processes, and communication and networking technology has led to a rise in their usage in civilian and commercial applications. The regulations of the Federal Aviation Administration (FAA) in the US had earlier limited the usage of UAVs to military applications. However more recently, the FAA has outlined new enforcement that will also expand the usage of UAVs in civilian and commercial applications. Due to being deployed in open atmosphere, UAVs are vulnerable to being lost, destroyed or physically hijacked. With the UAV technology becoming ubiquitous, various issues in UAV networks such as intra-UAV communication, UAV security, air data security, data storage and management, etc. need to be addressed. Blockchain being a distributed ledger protects the shared data using cryptography techniques such as hash functions and public key encryption. It can also be used for assuring the truthfulness of the information stored and for improving the security and transparency of the UAVs. In this paper, we review various applications of blockchain in UAV networks such as network security, decentralized storage, inventory management, surveillance, etc., and discuss some broader perspectives in this regard. We also discuss various challenges to be addressed in the integration of blockchain and UAVs and suggest some future research directions.Item Artificial Intelligence (AI)-Empowered Intrusion Detection Architecture for the Internet of Vehicles(IEEE, 2021-06) Alladi, Tejasvi; Chamola, VinayRecent advances in the Internet of Things (IoT) and the adoption of IoT in vehicular networks have led to a new and promising paradigm called the Internet of Vehicles (IoV). However, the mode of communication in IoV being wireless in nature poses serious cybersecurity challenges. With many vehicles being connected in the IoV network, the vehicular data is set to explode. Traditional intrusion detection techniques may not be suitable in these scenarios with an extremely large amount of vehicular data being generated at an unprecedented rate and with various types of cybersecurity attacks being launched. Thus, there is a need for the development of advanced intrusion detection techniques capable of handling possible cyberattacks in these networks. Toward this end, we present an artificial intelligence (AI)-based intrusion detection architecture comprising Deep Learning Engines (DLEs) for identification and classification of the vehicular traffic in the IoV networks into potential cyberattack types. Also, taking into consideration the mobility of the vehicles and the realtime requirements of the IoV networks, these DLEs will be deployed on Multi-access Edge Computing (MEC) servers instead of running on the remote cloud. Extensive experimental results using popular evaluation metrics and average prediction time on a MEC testbed demonstrate the effectiveness of the proposed scheme.Item Blockchain Applications for Industry 4.0 and Industrial IoT: A Review(IEEE, 2019) Alladi, Tejasvi; Chamola, VinayThe potential of blockchain has been extensively discussed in the literature and media mainly in finance and payment industry. One relatively recent trend is at the enterprise-level, where blockchain serves as the infrastructure for internet security and immutability. Emerging application domains include Industry 4.0 and Industrial Internet of Things (IIoT). Therefore, in this paper, we comprehensively review existing blockchain applications in Industry 4.0 and IIoT settings. Specifically, we present the current research trends in each of the related industrial sectors, as well as successful commercial implementations of blockchain in these relevant sectors. We also discuss industry-specific challenges for the implementation of blockchain in each sector. Further, we present currently open issues in the adoption of the blockchain technology in Industry 4.0 and discuss newer application areas. We hope that our findings pave the way for empowering and facilitating research in this domain, and assist decision-makers in their blockchain adoption and investment in Industry 4.0 and IIoT space.Item Blockchain in Smart Grids: A Review on Different Use Cases(MDPI, 2019) Alladi, Tejasvi; Chamola, VinayWith the integration of Wireless Sensor Networks and the Internet of Things, the smart grid is being projected as a solution for the challenges regarding electricity supply in the future. However, security and privacy issues in the consumption and trading of electricity data pose serious challenges in the adoption of the smart grid. To address these challenges, blockchain technology is being researched for applicability in the smart grid. In this paper, important application areas of blockchain in the smart grid are discussed. One use case of each area is discussed in detail, suggesting a suitable blockchain architecture, a sample block structure and the potential blockchain technicalities employed in it. The blockchain can be used for peer-to-peer energy trading, where a credit-based payment scheme can enhance the energy trading process. Efficient data aggregation schemes based on the blockchain technology can be used to overcome the challenges related to privacy and security in the grid. Energy distribution systems can also use blockchain to remotely control energy flow to a particular area by monitoring the usage statistics of that area. Further, blockchain-based frameworks can also help in the diagnosis and maintenance of smart grid equipment. We also discuss several commercial implementations of blockchain in the smart grid. Finally, various challenges to be addressed for integrating these two technologies are discussed.Item A Comprehensive Survey on the Applications of Blockchain for Securing Vehicular Networks(ARXIV, 2022-01) Alladi, Tejasvi; Chamola, VinayVehicular networks promise features such as traffic management, route scheduling, data exchange, entertainment, and much more. With any large-scale technological integration comes the challenge of providing security. Blockchain technology has been a popular choice of many studies for making the vehicular network more secure. Its characteristics meet some of the essential security requirements such as decentralization, transparency, tamper-proof nature, and public audit. This study catalogues some of the notable efforts in this direction over the last few years. We analyze around 75 blockchain-based security schemes for vehicular networks from an application, security, and blockchain perspective. The application perspective focuses on various applications which use secure blockchain-based vehicular networks such as transportation, parking, data sharing/ trading, and resource sharing. The security perspective focuses on security requirements and attacks. The blockchain perspective focuses on blockchain platforms, blockchain types, and consensus mechanisms used in blockchain implementation. We also compile the popular simulation tools used for simulating blockchain and for simulating vehicular networks. Additionally, to give the readers a broader perspective of the research area, we discuss the role of various state-of-the-art emerging technologies in blockchain-based vehicular networks. Lastly, we summarize the survey by listing out some common challenges and the future research directions in this field.Item Consumer IoT: Security Vulnerability Case Studies and Solutions(IEEE, 2020) Alladi, Tejasvi; Chamola, VinayAs consumer Internet of Things (IoT) devices become increasingly pervasive in our society, there is a need to understand the underpinning security risks. Therefore, in this article, we describe the common attacks faced by consumer IoT devices and suggest potential mitigation strategies. We hope that the findings presented in this article will inform the future design of IoT devices.Item A deep learning based misbehavior classification scheme for intrusion detection in cooperative intelligent transportation systems(Elsevier, 2022-07) Alladi, Tejasvi; Chamola, VinayWith the rise of the Internet of Vehicles (IoV) and the number of connected vehicles increasing on the roads, Cooperative Intelligent Transportation Systems (C-ITSs) have become an important area of research. As the number of Vehicle to Vehicle (V2V) and Vehicle to Interface (V2I) communication links increases, the amount of data received and processed in the network also increases. In addition, networking interfaces need to be made more secure for which existing cryptography-based security schemes may not be sufficient. Thus, there is a need to augment them with intelligent network intrusion detection techniques. Some machine learning-based intrusion detection and anomaly detection techniques for vehicular networks have been proposed in recent times. However, given the expected large network size, there is a necessity for extensive data processing for use in such anomaly detection methods. Deep learning solutions are lucrative options as they remove the necessity for feature selection. Therefore, with the amount of vehicular network traffic increasing at an unprecedented rate in the C-ITS scenario, the need for deep learning-based techniques is all the more heightened. This work presents three deep learning-based misbehavior classification schemes for intrusion detection in IoV networks using Long Short Term Memory (LSTM) and Convolutional Neural Networks (CNNs). The proposed Deep Learning Classification Engines (DCLE) comprise of single or multi-step classification done by deep learning models that are deployed on the vehicular edge servers. Vehicular data received by the Road Side Units (RSUs) is pre-processed and forwarded to the edge server for classifications following the three classification schemes proposed in this paper. The proposed classifiers identify 18 different vehicular behavior types, the F1-scores ranging from 95.58% to 96.75%, much higher than the existing works. By running the classifiers on testbeds emulating edge servers, the prediction performance and prediction time comparison of the proposed scheme is compared with those of the existing studies.Item Deep Neural Networks for Securing IoT Enabled Vehicular Ad-Hoc Networks(IEEE, 2021) Alladi, Tejasvi; Chamola, VinayVehicular ad-hoc network (VANET) security has been an active area of research over the past decade. However, with the increasing adoption of the Internet of Things (IoT) in VANETs, the number of connected vehicles is set to grow exponentially over the next few years, which translates to a higher number of communication interfaces and a greater possibility of cybersecurity attacks. Along with these cybersecurity attacks, the instances of compromised vehicles sending faulty information about their positions and speeds also increase exponentially. Thus, there is a need to augment the existing security schemes with anomaly detection schemes which can differentiate normal vehicle data from malicious and faulty data. Since, the number of anomaly types can be many, deep neural networks would work best in this scenario. In this paper, we propose a deep neural network-based vehicle anomaly detection scheme. We use a sequence reconstruction approach to differentiate normal vehicle data from anomalous data. Numerical results show that we can correctly detect data corresponding to several anomaly types.Item DeepADV: A Deep Neural Network Framework for Anomaly Detection in VANETs(IEEE, 2021-09) Alladi, Tejasvi; Chamola, VinayWe are seeing a growth in the number of connected vehicles in Vehicular Ad-hoc Networks (VANETs) to achieve the goal of Intelligent Transportation System (ITS). This is leading to a connected vehicular network scenario with vehicles continuously broadcasting data to other vehicles on the road and the roadside network infrastructure. The presence of a large number of communicating vehicles greatly increases the number and types of possible anomalies in the network. Existing works provide solutions addressing specific anomalies in the network only. However, since there can be a multitude of anomalies possible in the network, there is a need for better anomaly detection frameworks that can address this unprecedented scenario. In this paper, we propose an anomaly detection framework for VANETs based on deep neural networks (DNNs) using a sequence reconstruction and thresholding algorithm. In this framework, the DNN architectures are deployed on the roadside units (RSUs) which receive the broadcast vehicular data and run anomaly detection tasks to classify a particular message sequence as anomalous or genuine. Multiple DNN architectures are implemented in this experiment and their performance is compared using key evaluation metrics. Performance comparison of the proposed framework is also drawn against the prior work in this area. Our best performing deep learning-based scheme detects anomalous sequences with an accuracy of 98%, a great improvement over the set benchmark.Item Detecting UAV Presence Using Convolution Feature Vectors in Light Gradient Boosting Machine(IEEE, 2022-12) Alladi, Tejasvi; Chamola, VinayThe growing number of Unmanned Aerial Vehicle (UAV) applications brings with it, a rising number of privacy concerns. The high availability of commercial drones is also increasing the need for strict regulations. As far away as we are from establishing such protocols to ensure that the most basic human right to privacy is not exploited, we are further away from enforcing them. Thus, there is a need for a generalised drone detection system to detect different drones operating in a broad range of Radio Frequencies (RF). Previous attempts to tackle this problem have been made using audio, video, radar, WiFi and RF signals. While all these methods have their own benefits and drawbacks, RF has various characteristics which make them suitable for practical applications on a large scale. In this paper, we propose a novel technique called the ConvLGBM model which combines the feature extraction capability of a Convolution Neural Network (CNN) with the high classification accuracy of the Light Gradient Boosting Machine (LightGBM). We develop and evaluate the classifications done by an optimal CNN and the LightGBM model and then compare both models with the ConvLGBM.Item Drone-MAP: A Novel Authentication Scheme for Drone-Assisted 5G Networks(IEEE, 2021) Chamola, Vinay; Alladi, Tejasvi; Chaturvedi, NitinDrones, also called Unmanned Aerial Vehicles (UAVs) are attracting significant attention in the research community for their many military and civil uses. They are especially being deployed for assistance in 5G communication networks. As a particular technology starts to gain widespread applicability, it is crucial that it becomes resistant to malicious entities. In particular, the communication between UAVs and the 5G-base station needs to be secured without leaking sensitive information to any unauthorized entities. The constraints on UAV in terms of computation time, impose the condition that any authentication protocol required for authenticating the UAV with the 5G base station must be lightweight in order to be feasible for deployment. To address this issue, a Physical Unclonable Function (PUF)-based mutual authentication scheme is proposed in this paper. Security analysis of the proposed protocol and a computation time comparison with state-of-the-art authentication protocol in the same field are also presented.Item Edge Computing and Deep Learning Enabled Secure Multitier Network for Internet of Vehicles(IEEE, 2021-04) Alladi, Tejasvi; Chamola, Vinay; Singh, DheerendraInternet of Vehicles (IoVs) are fast becoming the norm in our society, but such a trend also comes with its own set of challenges (e.g., new security and privacy risks due to the expanded attack vectors). In this work, we propose an edge-computing-based secure, efficient, and intelligent multitier heterogeneous IoVs network. We first discuss the functionality and objectives of such an architecture. Then, we demonstrate how unsupervised deep learning techniques can facilitate the identification of suspicious vehicle behavior and ensure the security of such an architecture. The findings from our evaluations demonstrate the learning spatiotemporal information and parameter efficiency of the proposed stacked long short-term memory (LSTM) model over single LSTMs.Item An efficient and scalable byzantine fault tolerant consensus for vehicular networks(IEEE, 2025) Alladi, TejasviVehicular networks represent a new distributed system paradigm that requires robust fault tolerance to ensure reliable operation. As a burgeoning area of research, the scalability and optimization of consensus mechanisms for these networks are critical. Traditional Byzantine Fault Tolerant (BFT) algorithms like PBFT are not inherently optimized for the localized needs of vehicular networks, suffering from scalability issues due to their global nature and high messaging complexity. In response, we introduce a two-tiered consensus framework that refines PBFT for the specific context of vehicular networks. By organizing nodes into clusters based on geographic proximity, our approach reduces messaging complexity from O(n2) to O(n1.5), significantly improving scalability. The framework distinguishes between local and global state transitions, adding two phases to the PBFT protocol to manage these efficiently. This tailored consensus process aligns with the localized communication patterns of vehicular networks, enhancing both efficiency and scalability. The framework addresses the critical challenges of traditional BFT algorithms in vehicular networks, offering a solution that is both scalable and resilient. It is a step toward enabling vehicular networks to fulfil their potential as a reliable component of modern distributed systems.Item HARCI: A Two-Way Authentication Protocol for Three Entity Healthcare IoT Networks(IEEE, 2021-02) Chamola, Vinay; Alladi, TejasviWith the recent use of IoT in the field of healthcare, a lot of patient data is being transmitted and made available online. This necessitates sufficient security measures to be put in place to prevent the possibilities of cyberattacks. In this regard, several authentication techniques have been designed in recent times to mitigate these challenges, but the physical security of the healthcare IoT devices against node tampering and node replacement attacks, in particular, is not addressed sufficiently in the literature. To address these challenges, a two-way two-stage authentication protocol using hardware security primitives called Physical Unclonable Functions (PUFs) is presented in this paper. Considering the memory and energy constraints of healthcare IoT devices, this protocol is made very lightweight. A formal security evaluation of this protocol is done to prove its validity. We also compare it with relevant protocols in the healthcare IoT scenario in terms of computation time and security to show its suitability and robustnessItem HybridSecNet: In-Vehicle Security on Controller Area Networks Through a Hybrid Two-Step LSTM-CNN Model(IEEE, 2024-06) Alladi, Tejasvi; Chamola, VinayThe modern Intelligent Vehicle (IV) is a complex technological marvel that heavily relies on the Controller Area Network (CAN) bus system to enable seamless communication among different electronic control units (ECUs). However, the CAN bus system lacks security mechanisms for authentication and authorization, leaving it vulnerable to various attacks. Malicious actors can freely broadcast CAN messages without protection, making the system susceptible to DoS, Fuzzing, and Spoofing attacks. Therefore, it is crucial to devise methods to safeguard modern vehicles from such threats. In this research paper, we introduce HybridSecNet, A hybrid two-step LSTM-CNN Model for Intrusion Detection, a deep learning-based architecture specifically designed to bolster in-vehicle security on Controller Area Networks (CAN). HybridSecNet comprises two stages of classification: the first stage employs long short-term memory (LSTM) to categorize input data as either normal or attacked, and the second stage further classifies the attacks into specific types using Convolutional Neural Networks (CNN). This two-step approach significantly enhances classification accuracy and reliability, yielding remarkable results with accuracy, precision, recall, and an F1-score of approximately 99.5% for CAN bus network attacks. Comparative analyses with existing single-step models underscore the superiority of our proposed model, demonstrating its potential to revolutionize in-vehicle security in the realm of modern intelligent vehicles.Item Industrial Control Systems: Cyberattack trends and countermeasures(Elsevier, 2020-04) Alladi, Tejasvi; Chamola, VinayIt is generally understood that an attacker with limited resources would not be able to carry out targeted attacks on Industrial Control Systems. Breaking this general notion, we present case studies of major attacks on Industrial Control Systems (ICSs) in the last 20 years. The attacks chosen are the most prominent ones in terms of the economic loss inflicted, the potential to damage physical equipment and to cause human casualties. For each of these attacks, we describe the attack methodology used and suggest possible solutions to prevent such attacks. We analyze each case study to provide a better insight into the development of future cybersecurity techniques for ICSs. Finally, we suggest some recommendations on the best practices for protecting ICSs.Item A Lightweight Authentication and Attestation Scheme for In-Transit Vehicles in IoV Scenario(IEEE, 2020-12) Alladi, Tejasvi; Chamola, VinayWith the rise of new technological paradigms such as the Internet of Things (IoT) and the Internet of Vehicles (IoV), we are going to see an unprecedented growth of connected vehicles on the roads. Also, with the ever-increasing complexity of vehicular electronics and with the increasing number of Electronic Control Units (ECUs) inside these next-generation vehicles, the need for verification of the firmware and software running on these ECUs using attestation techniques is heightened all the more. In this paper, we propose a lightweight and secure authentication and attestation scheme for attesting vehicles while they are on the roads. Since this attestation is proposed to be carried out on moving vehicles, there is also a need for authenticating the vehicles with the Road Side Units (RSUs) first before carrying out attestation. Therefore, a combined attestation and authentication scheme for verification of the vehicle ECU firmware is presented here. The ECU firmware running on the vehicles can be attested from the edge servers connected to the RSUs while the vehicles are in-transit and passing through these RSUs. We perform a security analysis of the proposed attestation and authentication protocol and compare it with other similar existing protocols. We also do a performance analysis of the proposed protocol and show the feasibility of its deployment.Item NovelADS: A Novel Anomaly Detection System for Intra-Vehicular Networks(IEEE, 2022-11) Alladi, Tejasvi; Chamola, VinayModern vehicular electronics is a complex system of multiple Electronic Control Units (ECUs) communicating to provide efficient vehicle functioning. These ECUs communicate using the well-known Controller Area Network (CAN) protocol. The increasing amount of research in the Intelligent Transportation System (ITS) domain has demonstrated that this protocol is vulnerable to various types of security attacks, compromising the safety of passengers and pedestrians on the roads. Hence, there is a need to develop novel anomaly detection systems to address this problem. This work presents a novel deep learning-based Intrusion Detection System incorporating thresholding and error reconstruction approaches. We train and explore multiple neural network architectures and compare their performance. The proposed anomaly detection system is tested on four kinds of attacks - Denial of Service (DoS), Fuzzy, RPM Spoofing and Gear Spoofing using evaluation metrics such as Precision, Recall and F1-Score. We also present reconstruction-error distribution plots to give a qualitative intuition about the proposed system’s ability to distinguish between genuine and anomalous sequences.