Abstract
Classifying devices connected to an enterprise network is a fundamental security control that is nevertheless challenging due to the limitations of fingerprint-based classification and black-box machine learning. In this paper, we address such limitations by proposing a similarity-based clustering method. We evaluate our solution and compare it to a state-of-the-art fingerprint-based classification engine using data from 20,000 devices. The results show that we can successfully classify around half of the unclassified devices with a high accuracy. We also validate our approach with domain experts to demonstrate its usability in producing new fingerprinting rules.
| Original language | English |
|---|---|
| Title of host publication | 2021 IEEE International Conference on Omni-Layer Intelligent Systems, COINS 2021 |
| Publisher | IEEE/LEOS |
| Pages | 1-7 |
| Number of pages | 7 |
| ISBN (Electronic) | 9781665431569 |
| ISBN (Print) | 978-1-6654-3157-6 |
| DOIs | |
| Publication status | Published - 25 Aug 2021 |
| Event | 2021 IEEE International Conference on Omni-Layer Intelligent Systems (COINS) - Barcelona, Spain Duration: 23 Aug 2021 → 25 Aug 2021 |
Conference
| Conference | 2021 IEEE International Conference on Omni-Layer Intelligent Systems (COINS) |
|---|---|
| Period | 23/08/21 → 25/08/21 |
Keywords
- Performance evaluation
- Semantics
- Process control
- Machine learning
- Manuals
- Fingerprint recognition
- Reliability engineering
- Classification
- Clustering
- Internet of Things