Olga S. Isaeva, Nikita V. Kulyasov, Sergey V. Isaev

Institute of Computational Modeling of SB RAS

The goal of investigation is to create data collection tools for studying the security aspects of information interaction between distributed devices and applications of the Internet of Things (IoT). To achieve the goal, the tasks were solved: a specialized research stand including all functional levels of the IoT architecture was developed, tools for collecting and aggregating data were created and indicators to detect network anomalies were built. The specialized stand includes a sensor level, which consists of measuring devices for monitoring the environment, a transport level implemented on the basis of a corporate network infrastructure, a data collection and storage cluster with various configurations of security settings is deployed for the service level, software for working with data is placed at the application level. The tools collect, aggregate and analyze structured data and logs unstructured on network traffic, taking into account the configuration settings of the security policies of telecommunications nodes. The indicators reflecting the activity and legitimacy of requests with distribution by days, countries and servers have been constructed. The tools are designed for cybersecurity specialists and allow you to analyze the impact of the IoT architecture on the security of the information interaction of network elements.

Internet of Things, network anomalies, Kubernetes cluster, messaging protocol, Message Queuing Telemetry Transport (MQTT), Eclipse Mosquitto, Smart environments