Botnet Prevention using Blockchain for SDN based IoT Devices

preprint OA: closed
Full text JSON View at publisher
Full text 64,398 characters · extracted from preprint-html · click to expand
Botnet Prevention using Blockchain for SDN based IoT Devices | Research Square window.SnipcartSettings = { analytics: { enabled: false } }; (function() { var accessVector = localStorage.getItem('access_vector') || ''; window.dataLayer = window.dataLayer || []; if (accessVector) { window.dataLayer.push({ user: { profile: { profileInfo: { snid: accessVector } } } }); } })(); (function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src='https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);})(window,document,'script','dataLayer','GTM-K279D39R'); Browse Preprints In Review Journals COVID-19 Preprints AJE Video Bytes Research Tools Research Promotion AJE Professional Editing AJE Rubriq About Preprint Platform In Review Editorial Policies Our Team Advisory Board Help Center Sign In Submit a Preprint Cite Share Download PDF Research Article Botnet Prevention using Blockchain for SDN based IoT Devices Shehryar Kamran, Qaisar Shafi This is a preprint; it has not been peer reviewed by a journal. https://doi.org/ 10.21203/rs.3.rs-5182918/v1 This work is licensed under a CC BY 4.0 License Status: Posted Version 1 posted You are reading this latest preprint version Abstract The Internet of Things (IoT) sector is being targeted by increasing botnets that can disrupt networks. This paper solves this problem by introducing a Software Defined Networks (SDNs) and blockchain integrated system focused on blocking IOT device botnets, such as Mirai. Their goal is to construct a model that combines the controllability of SDN with the unchangeable and distributed features in blockchain. It would detect botnet activities through network traffic analysis, improve security with blockchain and be a scalable solution for large networks of devices. The efficacy of this model was tested in a simulated environment, which resembles actual network situations. Ryu controllers synced Open vSwitch instances with emulated IoT devices using a blockchain platform made of Hyperledger Fabric. Finally, testing was carried out in Mininet, for network emulation and also ger- mini, for botnet attack simulation. Ryu applications running over x-trust-domain interfaces were developed to capture and detect botnet behaviours; as necessary, they both dropped malicious packets and took enforcement actions. The results proved the efficiency of the developed model to detect botnet attacks and to increase network security. Peripheral nature and scope of centralized model meant it could be deployed at a larger scale. This study paves the way for implementing proactive security solutions within IoT ecosystems. Botnet Prevention Blockchain SDN Internet of Things Cybersecurity Figures Figure 1 Figure 2 Figure 3 Figure 4 Figure 5 Figure 6 Figure 7 Figure 8 Figure 9 Figure 10 Figure 11 Figure 12 Figure 13 1 Introduction Botnets have the ability to create widespread data breach, and are masters at bypass- ing security protocols for carrying out brutal DDoS attacks Hayat et al ( 2022b )Ibrahim et al ( 2022a ). With the rise in cyber threats there are defenses that we utilize and need to create new defenses but with constant vigilance Woodiss-Field et al ( 2024 ). It is targeted to develop a blockchain driven architecture in order to secure the IoT devices from the botnets using Blockchain technology [3] [4]. As a multi-layered secu- rity shield, Cyber Threats are kept at bay by blockchain technology Kumar et al ( 2022 ). Authors of Sˇarac et al ( 2021 ) treated it as a good barrier against cyber threats within our internet connected world. We highlight the importance of collaboration between Software Defined Networking (SDN) and blockchain technology in this paper. The decentralization of blockchain can remove a single point of failure in SDN, leading to powerful defense Feng et al ( 2021 )Mishra et al ( 2021 ). Our research is important given the 2016 Mirai botnet attack shut down a number of global ISPs [3]. Using blockchain can make these security measures faster Eustis ( 2019 ). Blockchain, by maintaining a precise and immutable ledger of account information quickly uncovers and remedies problems in the network, which enhances its resilience ABBASSI and Benlahmer ( 2022 ). This post contains our commitment to blockchain that makes perfect sense on proof of thought and demonstration in network security improvement, securing cyber space etc. It intends to transform theoretical possibilities in revisable IoT deployments specifi- cally protecting IoT devices from botnet attacks in SDN based devices Shareef et al ( 2024 ). Theory paired with hands on “real world” cyber attacks in an environment simulated using simulation software. 2 Related Work The revolutionary blockchain framework to fight against Distributed Denial of Service (DDoS) attacks on Internet of Things (IoT)- based networks is presented in the cited study Ibrahim et al (2022b). The transaction is secured by combining decentralized Software-Defined Networking (SDN) and blockchain technology. Even with deploy- ment problems, such as scalability and privacy, the researchers adopted that ongoing research can advance technology. BlockBot: An Architecture for Blockchain Based Botnet Detection in IIoT- salim2022blockchain BlockBot: An Architecture for Auditable and Trustworthy BotNet Detection in Industrial IoTs Salim et al (2022). Even though it is not easy to combine blockchain and IIoT; the authors stress how mature security methods are riddled with shortcomings, and elaborate some of them that transfer benefits includ- ing blockchain-integrated federated learning. The work in Shafi and Basit (2019) addresses a new technique to fight against DDos Botnet attacks on IOT based devices. An effective defense against these is to quickly transfer the data into a blockchain-based system of storage as soon as an attack has taken place. The case has attracted academic interest towards a possible role for blockchain in controlling DDoS attacks. Rathore et al (2019) presents a decentralized security model for IoT networks based on blockchain known as BlockSecIoTNet approach. Ahmed et al (2019) covers different security strategies in blockchain and tributes to the vulnerability of scalability before finding a solution for privacy and seriousness. The detection study of securing IoT from mirai bot attacks using blockchain was dis- cussed in Hayat et al (2022a)’s article, as they used blockchain derived digital leger. It touches on IoT security measures and recognizes integration difficulties. SDN and blockchain-based IoT multi-levelsecurity solution Roy and Srirama (2022). A study by Asif et al (2022) suggests a model combining machine learning, blockchain, and SDN to deal with botnet attacks. Blockchain and reputation-based systems for botnet detection in Internet of Things networks Khan et al (2022) strategy. The research in Ahsan et al (2022) proposes how blockchain can be helpful for preventing Botnet activity and shows the implications of botnet mitigation with Blockchain. 3 Methods This research presents new approach to defense against malicious computer systems, with particular reference to the Internet of Things (IoT). The strategy intercon- nects software-defined networking (SDN) and blockchain technology to harness SDNs’ unparalleled network management skills on the one hand, and secure, user-friendly features rooted in blockchains on the other. That being said, the fundamental innovation of this approach is combining blockchain techonology with SDN management to form a fortified defensive tool for the probable botnet threats. As shown in Figure 1 ,the expression was quite constant among differ- ent sublines Centralised control, As we all know being having centralised brain, SDN completely mitigates the problem of securing the whole IoT network from a single point. This central framework allows security protocols to be quickly enforced across all connecting devices. The blockchain model presented in the research of this paper is planned to be com- patible with the SDN controller. This necessitates the need of linking SDN controllers to blockchains for credible authentication. This configuration further helps to control activities in the network system, thereby promoting security by scrutinizing functions and prescribing regulations. This allows the SDN controller to auto-trigger and isolate compromised devices or shutdown harmful traffic using whatever actions is supported by the underlying network if any malicious activities detected through the blockchain. Powered by decentralized record-keeping technology and cutting-edge cryptographic tools, blockchain form this new method for data storing across devices environment safely and securely. This creates a high level of stability and security in storage as well as the management. Instead, we solve the problems associated with traditional hierarchies commonly exploited as insecure ratlines. We hope to do so by embedding protocol auditable smart contracts, which list and authenticate all SDN controllers in our network. Every controller would have a specific ID that is registered on the blockchain, which guar- antee only legitimate devices to commit network operations. The security protocols for the established blockchain model are engaged in case of a risk to botnet attack. Smart contracts by themselves are embed software defined network- ing (SDN) controllers that take autonomous action within a set of SDN infrastructure. Such responses could involve quarantining infected devices, blocking malicious traffic or notifying security admins for additional security countermeasures. 3.1 Evaluation Metrics It addresses an approach to lighten the above issues in the Internet of Things (IoT) backdrop on harmful computer systems, encasing equally Network Management and User friendly but secure characteristics of Software Defined Networking (SDN) and Blockchain technology respectively. Based on that strategy, integration of SDN and blockchain has the potential to be a robust countermeasure to future botnet threats. SDN provides central controllers over the network and protection for each inimpla- mented security protocol. The blockchain model is running well with the SDN controller, which it regularly checks network operations and imposes rules to eliminate threats. Powered by a set of strong cryptographic algorithms, Blockchain relies on decentralized ledger system to create a structured framework for storing data securely. To fix one of the most serious issues of traditional hierarchical systems, our approach puts into practice smart contracts to record and validate all SDN controllers (regis- tered with their unique ID on the blockchain). This configuration limits the entry of only permitted devices to the network. If it detects a botnet attack, the blockchain model triggers security protocols. In this scenario, the SDN controllers that work within smart contracts take actions necessary to mitigate an incident: such as isolating compromised devices, dropping malicious traffic or notifying network security administrators. 4 Results Let’s dive deeper to unveil the efficiency of our network design. Its intricate nature should be explored to cover more nuanced points all lovingly crafted. It should yield for us a careful design, deliberate test and an outstanding output through sheer hardwork. See Figure 2 That prominent mask yields a much stronger explanation — the next most complete version on this topic. The design is strategic, with unique details. And the Awareness Diagram provides a likely framework to unlock that understanding — breaking down what we know in useful ways, helping us discover new insights. It is certainly going to help in breaking out the whole topic just to become less complex. The initial round of testing was a controlled packet transmission from many hosts to switches and was designed to make sure the system actually works. Figure 3, the initial success. We decided to pursue a high-containment clinical trial. To explore high data transfer, we used a popular network emulator called Mininet and artificially pushed its limits to simulate some serious cyberattack scenarios as if they were really happening in production on top of a set of 4 devices custom fit for the task. Undertaking this rigorous work increased the quality of our study and improved its intensity making it even higher than expected. The strides we have made in these areas are the start of our next endeavors to combating enduring cyber threats. Figure 4 demonstrates that our findings are reliable and valid, as reflected in suc- cessive Figure. The experiment was so sophisticated that the focused devices were isolated from all the network core, thus we maintained for ourselves only a drama of cyber threats but confirmed our model resistant against it. This somehow proves our model is capable of a flag capturing and botnet chaos preventing operation against modern cyber threats. After comprehensive testing, we then conducted a thorough preliminary analysis of our network system to determine if it was operational and available. It was a key-job to achieve our main target-network optimization that most thoroughly checked every network components. Full-end audit of the Open vSwitch (OVS) database to characterize the network behavior and identify possible security vulnerabilities. As expensive as the audit was in terms of human resources, it provided insights into the network architecture showing interfaces, ports and how they worked with each other. It also provided visibility into what units controlled the flow entries of network switches. Therefore, with due care each piece of information was gathered, clearly documented and illustrated in the form of charts as presented in Figure 5. In this demonstration, we provide an evidence using our approach by implementing a novel blockchain and Software-Defined Networking (SDN) to network protection for improving the security status of variable IoT environment based on our recent study. Trusted to fight botnet threats by large scale trials, it separates the vulnerable IoT devices from other part of networks so as to increase the security status and maintain its continuous operation. The findings of the paper provide support towards operationalization of the presented theoretical concepts, and seed demonstration our approach’s efficacy for attacking botnet threats with respect their realization in SDN-IoT infrastructure based on Blockchain technology. A smart defense against botnet threats depends on the ability of control systems to accurately recognize devices with anomalous rate of data transmission – a fundamental feature of our security model. 4.1 Detection Rate Here the first botnet detctection rate was almost 60%. This improved considerably to 95% by employing blockchain with Software-Defined Networking (SDN). This is primarily due to of the industry’s circuit breaker SDN on network control and security, as well as the decentralization, integrity, privacy center block chain. Thus data were collected to provide an indication of all aspects incorporated in the figure, this is a intentional step by step process as presented in Figure 6. 4.2 Network Traffic With SDN integration, our network traffic analysis went from 500 Mbps to only 350 Mbps, a 30% decrease. This gives you a lot more potential for flexibility and adds in some real time inspections. Blockchain technology also has a security aspect to tighten network security, so that it can reduce the occurrence of botnet at its source. you can see in 7. 4.3 DDoS Attacks Botnet and DDoS Attacks have been grossly reduced, and this type of enforcement- model does wonderfully in making network security effective. Post-mitigation, daily DDoS Attacks reduced to 3 from 15 per day. This is further depicted in Figure 8, which also shows how the model normalized DDoS Attacks. 4.4 Flow Rule With adding blockchain technology, we have decreased the time required for updating rules by a factor of 2 — 10 seconds to 5 seconds per rule. Automations of these aspects by FTISCON has allowed us to accelerate such operations include authenticating smart contracts and validating rules via blockchain consensus, which drives efficient, secure rule execution. An illustrative example is provided in Figure 9. 4.5 Security Compliance After conducting a comprehensive test we can now confirm the extra-secure 95% effi- ciency offered by way of this colored coin-enhanced blockchain model. It serves as a powerful protection system against botnets for IoT devices to work efficiently. This high level of performance is clearly demonstrated in Figure 10. 4.6 Unauthorized Access Blockchain provides Decentralization, Immutable Records, and Data Verification as its core features making the number of unauthorized network access attempted weekly reduces from 200 to 50 only. This high performance is shown in Figure 11. 4.7 System Performance According to our analyses, we see a small (between 0.5 and 1.0) increase in latency, which is an acceptable trade-off for the great security improvements against botnets achieved by implementing SDN on the IoT networks. This can be seen by referring to Figure 12. 4.8 Packet Loss As a result, our implementation of the system witnessed a drastic reduction in package loss from 2.5% to only 0.01%, thus establishing the robustness and practicability of the system in traffic management with blockchain technology. These represent a special to bring the security of the complete system up and even in an automatic way to traffic management. The performance gained is shown in 13. Our security measures are designed to be botnet resistant and provide device-specific threat protection for IoT. By utilising blockchain technology, we remove the single point failure risk — conspiracy — hence providing integrity of data like no other. Our process uses smart contracts to automatically trigger security measures, which can decrease the time-to-response and optimize for efficiency. This would make use of SDNs centralized control, harnessing blockchain decentralized trust to result in a resistible security measure for IoT devices. 5 Conclusion In this article, we provide the first security investigation on IoT SDN-based devices in the face with the emerging botnet threat. In this work, we present an innovative security scheme to combine SDN and blockchain technology. The idea, in short, is to anticipate botnet attacks and eliminate them efficiently before any damage is done. Using blockchain technology in our new SDN model, we propose a novel botnet defence solution. This demonstrates its agility and flexibility, making it perfect for the fast- growing IoT industry. Our model works on blockchain but more importantly, it acts as a trust enhancing, experience improving and a security layer for users. Testing the model in a large IoT environment and other use case of detecting hidden botnet attacks has proved that this model is viable, as ISPs can then have “A New Partner” to help them minimize their risk. This has wide-ranging implications for a future that will have more secure and resilient IoT ecosystems — turning the robust cybersecurity system from a want to an urgent need as connected devices grow. We have a long-term solution for that, which could minimize threats and save IoT in the future. It is a revolution in technology that literally creates our world and the way we participate in it. Supporting our model to help community adoption will provide good protection for this ongoing transformation. Declarations Funding Not applicable Conflict of interest/Competing interests Not applicable Ethics approval and consent to participate Not applicable Consent for publication Not applicable Data availability Not applicable Materials availability Not applicable Code availability Not applicable Author contribution Not applicable References ABBASSI Y, Benlahmer H (2022) Bcsdn-iot: Towards an iot security architecture based on sdn and blockchain. International journal of electrical and computer engineering systems 13(2):155–163 Ahmed Z, Danish SM, Qureshi HK, et al (2019) Protecting iots from mirai botnet attacks using blockchains. In: 2019 IEEE 24th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD), IEEE, pp 1–6 Ahsan M, Khan MK, Umair M (2022) A blockchain-based botnet prevention system for sdn-based iot networks using machine learning. IEEE Access 10:1–1. https:// doi.org/10.1109/ACCESS.2022.3151238 Asif M, Khan MA, Khan MA (2022) Blockchain-based collaborative botnet detec- tion and mitigation system for sdn-enabled iot networks. Journal of Net- work and Computer Applications 202:105038. https://doi.org/https://doi.org/10. 1016/j.jnca.2022.105038, URL https://www.sciencedirect.com/science/article/pii/ S1084804522003585 Eustis AG (2019) The mirai botnet and the importance of iot device security. In: 16th International Conference on Information Technology-New Generations (ITNG 2019), Springer, pp 85–89 Feng H, Yan X, Zhou N, et al (2021) A cross-domain collaborative ddos defense scheme based on blockchain-sdn in the iot. In: Proceedings of the 2021 ACM International Conference on Intelligent Computing and its Emerging Applications, pp 77–82 Hayat RF, Aurangzeb S, Aleem M, et al (2022a) Ml-ddos: A blockchain-based mul- tilevel ddos mitigation mechanism for iot environments. IEEE Transactions on Engineering Management pp 1–1. https://doi.org/10.1109/TEM.2022.3151236 Hayat RF, Aurangzeb S, Aleem M, et al (2022b) Ml-ddos: A blockchain-based mul- tilevel ddos mitigation mechanism for iot environments. IEEE Transactions on Engineering Management Ibrahim M, Hanif M, Ahmad S, et al (2022a) Sdn based ddos mitigating approach using traffic entropy for iot network. CMC Comput Mater Contin 70:5651–5665 Ibrahim RF, Abu Al-Haija Q, Ahmad A (2022b) Ddos attack prevention for internet of thing devices using ethereum blockchain technology. Sensors 22(18):6806 Khan MA, Asif M, Khan MA (2022) A blockchain-based botnet mitigation system for sdn-enabled iot networks using reputation. IEEE Access 10. https://doi.org/10. 1109/ACCESS.2022.3151237 Kumar R, Kumar P, Tripathi R, et al (2022) A distributed intrusion detection system to detect ddos attacks in blockchain-enabled iot network. Journal of Parallel and Distributed Computing 164:55–68 Mishra A, Gupta B, Perakovi´c D, et al (2021) Defensive approach using blockchain technology against distributed denial of service attacks. In: International Conference on Smart Systems and Advanced Computing (Syscom-2021) Rathore S, Kwon BW, Park JH (2019) Blockseciotnet: Blockchain-based decentralized security architecture for iot network. Journal of Network and Computer Applications 143:167–177 Roy DG, Srirama S (2022) A blockchain-based cyber attack detection scheme for decentralized internet of things using software-defined network. Soft- ware: Practice and Experience https://doi.org/https://doi.org/10.1002/ spe.3039, URL https://onlinelibrary.wiley.com/doi/abs/10.1002/spe.3039, https://onlinelibrary.wiley.com/doi/pdf/10.1002/spe.3039 Salim MM, Comivi AK, Nurbek T, et al (2022) A blockchain-enabled secure digital twin framework for early botnet detection in iiot environment. Sensors 22(16):6133 Sˇarac M, Pavlovi´c N, Bacanin N, et al (2021) Increasing privacy and security by inte- grating a blockchain secure interface into an iot device security gateway architecture. Energy Reports 7:8075–8082 Shafi Q, Basit A (2019) Ddos botnet prevention using blockchain in software defined internet of things. In: 2019 16th international Bhurban conference on applied sciences and technology (IBCAST), IEEE, pp 624–628 Shareef SK, Chaitanya RK, Chennupalli S, et al (2024) Enhanced botnet detection in iot networks using zebra optimization and dual-channel gan classification. Scientific Reports 14(1):17148 Woodiss-Field A, Johnstone MN, Haskell-Dowland P (2024) Examination of tradi- tional botnet detection on iot-based bots. Sensors 24(3):1027 Additional Declarations The authors declare no competing interests. Cite Share Download PDF Status: Posted Version 1 posted You are reading this latest preprint version Research Square lets you share your work early, gain feedback from the community, and start making changes to your manuscript prior to peer review in a journal. As a division of Research Square Company, we’re committed to making research communication faster, fairer, and more useful. We do this by developing innovative software and high quality services for the global research community. Our growing team is made up of researchers and industry professionals working together to solve the most critical problems facing scientific publishing. Also discoverable on Platform About Our Team In Review Editorial Policies Advisory Board Help Center Resources Author Services Accessibility API Access RSS feed Manage Cookie Preferences © Research Square 2026 | ISSN 2693-5015 (online) Privacy Policy Terms of Service Do Not Sell My Personal Information {"props":{"pageProps":{"initialData":{"identity":"rs-5182918","acceptedTermsAndConditions":true,"allowDirectSubmit":true,"archivedVersions":[],"articleType":"Research Article","associatedPublications":[],"authors":[{"id":360795607,"identity":"be3b823a-ff21-4cca-b9df-9c0bfecfc6e8","order_by":0,"name":"Shehryar Kamran","email":"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAZAAAAAyAQMAAABI0h/eAAAABlBMVEX///8AAABVwtN+AAAACXBIWXMAAA7EAAAOxAGVKw4bAAABDUlEQVRIiWNgGAWjYDACCQY2KA0GNglgKqGAeC1pCWB+ggHxWg5DtDDg0SI/u/nY48o2u3zJ9tNpH37uOJ/HL9+d+OGBAYM8v9gBrFoM7hxLNzzblmw5myd388zeM7eLJdt4N0sAHWY4c3YCdi0SOWaSjW3MBnIMuZsZeNtuJ244xrsBpCXB4DZ2LfIz8r8BtdQbyPG/3cz4t+0cSMvmH/i0MNzIYQNqOWwgLZG7mZm37QBIyza8thjcSDOTbDh33EByxtvNzLJtyYkz23K3WSQYSOD0i/yM5GeSDWXVBhLnczczvm2zS+xnPrv55o8KG3l+aRwOAwFGNkwxCdzKweAPAflRMApGwSgY2QAAtsleGUveirMAAAAASUVORK5CYII=","orcid":"https://orcid.org/0009-0009-1653-3534","institution":"National University of Computer and Emerging Sciences","correspondingAuthor":true,"prefix":"","firstName":"Shehryar","middleName":"","lastName":"Kamran","suffix":""},{"id":360795608,"identity":"bd54386e-6b86-4eb0-b4d7-589e1d1f055c","order_by":1,"name":"Qaisar Shafi","email":"","orcid":"","institution":"National University of Computer and Emerging Sciences","correspondingAuthor":false,"prefix":"","firstName":"Qaisar","middleName":"","lastName":"Shafi","suffix":""}],"badges":[],"createdAt":"2024-09-30 18:31:56","currentVersionCode":1,"declarations":{"humanSubjects":false,"vertebrateSubjects":false,"conflictsOfInterestStatement":false,"humanSubjectEthicalGuidelines":false,"humanSubjectConsent":false,"humanSubjectClinicalTrial":false,"humanSubjectCaseReport":false,"vertebrateSubjectEthicalGuidelines":false},"doi":"10.21203/rs.3.rs-5182918/v1","doiUrl":"https://doi.org/10.21203/rs.3.rs-5182918/v1","draftVersion":[],"editorialEvents":[],"editorialNote":"","failedWorkflow":false,"files":[{"id":65859050,"identity":"0cb6db23-bec2-41fd-96af-d82f0992794c","added_by":"auto","created_at":"2024-10-03 15:39:51","extension":"png","order_by":1,"title":"Figure 1","display":"","copyAsset":false,"role":"figure","size":128725,"visible":true,"origin":"","legend":"\u003cp\u003eSystem Architecture\u003c/p\u003e","description":"","filename":"1.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/4e908399171aa255ef6dd4e8.png"},{"id":65859296,"identity":"2ffd66d7-09c5-4677-95df-88719fa64767","added_by":"auto","created_at":"2024-10-03 15:47:51","extension":"png","order_by":2,"title":"Figure 2","display":"","copyAsset":false,"role":"figure","size":138123,"visible":true,"origin":"","legend":"\u003cp\u003eSDN Implementation\u003c/p\u003e","description":"","filename":"2.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/4cebbe29309a641864fd2fd8.png"},{"id":65859937,"identity":"86269119-4146-4cb0-8371-503fdfd549f3","added_by":"auto","created_at":"2024-10-03 15:55:51","extension":"png","order_by":3,"title":"Figure 3","display":"","copyAsset":false,"role":"figure","size":610237,"visible":true,"origin":"","legend":"\u003cp\u003eVerification of Connected Hosts\u003c/p\u003e","description":"","filename":"3.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/5417658c333f9f586fe4c40d.png"},{"id":65859038,"identity":"0f5ebc67-c2f2-4df7-98d9-9c25bbe7cff2","added_by":"auto","created_at":"2024-10-03 15:39:51","extension":"png","order_by":4,"title":"Figure 4","display":"","copyAsset":false,"role":"figure","size":501997,"visible":true,"origin":"","legend":"\u003cp\u003eDisconnected Hosts\u003c/p\u003e","description":"","filename":"4.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/c0b78612ba01752f1a6337a0.png"},{"id":65859041,"identity":"31dc94db-a6b7-4f85-80b7-5f2aade83b49","added_by":"auto","created_at":"2024-10-03 15:39:51","extension":"png","order_by":5,"title":"Figure 5","display":"","copyAsset":false,"role":"figure","size":261933,"visible":true,"origin":"","legend":"\u003cp\u003eOpen vSwitch (OVS) database\u003c/p\u003e","description":"","filename":"5.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/272b0c554a4a4cbd137463b2.png"},{"id":65859044,"identity":"21a3be3a-8926-4ffd-bf68-32719b75030f","added_by":"auto","created_at":"2024-10-03 15:39:51","extension":"png","order_by":6,"title":"Figure 6","display":"","copyAsset":false,"role":"figure","size":48381,"visible":true,"origin":"","legend":"\u003cp\u003eDetection Rate of Botnets Over Time\u003c/p\u003e","description":"","filename":"6.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/356781ee92a3e5854383878f.png"},{"id":65859294,"identity":"4b1aaea9-f9b8-4db0-8da5-9dbf4dd71684","added_by":"auto","created_at":"2024-10-03 15:47:51","extension":"png","order_by":7,"title":"Figure 7","display":"","copyAsset":false,"role":"figure","size":60884,"visible":true,"origin":"","legend":"\u003cp\u003eNetwork Traffic Analysis\u003c/p\u003e","description":"","filename":"7.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/cae9f9ee6896253b975285ad.png"},{"id":65859293,"identity":"4210b918-68d0-44aa-aa80-a1aa60f47b39","added_by":"auto","created_at":"2024-10-03 15:47:51","extension":"png","order_by":8,"title":"Figure 8","display":"","copyAsset":false,"role":"figure","size":66882,"visible":true,"origin":"","legend":"\u003cp\u003eFrequency of DDoS Attacks\u003c/p\u003e","description":"","filename":"8.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/159e7a75727ffd24f6219a82.png"},{"id":65859298,"identity":"8a21d0f3-4cd0-4810-a2ca-a4301d92751f","added_by":"auto","created_at":"2024-10-03 15:47:51","extension":"png","order_by":9,"title":"Figure 9","display":"","copyAsset":false,"role":"figure","size":55933,"visible":true,"origin":"","legend":"\u003cp\u003eFlow Rule Update Time\u003c/p\u003e","description":"","filename":"9.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/51cfee62195508ce9d246d78.png"},{"id":65860319,"identity":"b6874c06-3a8c-48ba-8b81-8d119245c393","added_by":"auto","created_at":"2024-10-03 16:03:51","extension":"png","order_by":10,"title":"Figure 10","display":"","copyAsset":false,"role":"figure","size":61470,"visible":true,"origin":"","legend":"\u003cp\u003eSecurity Compliance Using Colored Coins\u003c/p\u003e","description":"","filename":"10.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/85366ebe0d29b33f391635b9.png"},{"id":65859935,"identity":"77b3439b-e7e6-41db-b2ca-8b58bbf39ada","added_by":"auto","created_at":"2024-10-03 15:55:51","extension":"png","order_by":11,"title":"Figure 11","display":"","copyAsset":false,"role":"figure","size":68540,"visible":true,"origin":"","legend":"\u003cp\u003eUnauthorized Access Attempts\u003c/p\u003e","description":"","filename":"11.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/91a1c3fcc7237b881968764d.png"},{"id":65859048,"identity":"59842dc0-b3ba-4741-8492-b5386e8946a3","added_by":"auto","created_at":"2024-10-03 15:39:51","extension":"png","order_by":12,"title":"Figure 12","display":"","copyAsset":false,"role":"figure","size":66778,"visible":true,"origin":"","legend":"\u003cp\u003eSystem Performance Impact\u003c/p\u003e","description":"","filename":"12.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/641b39bbf2e67d31a751f509.png"},{"id":65860320,"identity":"f16d7fbb-3256-4ae0-9b94-990d0758d457","added_by":"auto","created_at":"2024-10-03 16:03:51","extension":"png","order_by":13,"title":"Figure 13","display":"","copyAsset":false,"role":"figure","size":64889,"visible":true,"origin":"","legend":"\u003cp\u003ePacket Loss Rate\u003c/p\u003e","description":"","filename":"13.png","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/6d9d51b6419382d4d14d72fe.png"},{"id":65860321,"identity":"bcc798ac-73a5-461a-ba77-d66678779c9f","added_by":"auto","created_at":"2024-10-03 16:03:57","extension":"pdf","order_by":0,"title":"","display":"","copyAsset":false,"role":"manuscript-pdf","size":2381529,"visible":true,"origin":"","legend":"","description":"","filename":"manuscript.pdf","url":"https://assets-eu.researchsquare.com/files/rs-5182918/v1/c91a3ae5-56a2-4db1-a3fb-1edbde5bc178.pdf"}],"financialInterests":"The authors declare no competing interests.","formattedTitle":"\u003cp\u003eBotnet Prevention using Blockchain for SDN based IoT Devices\u003c/p\u003e","fulltext":[{"header":"1 Introduction","content":"\u003cp\u003e \u003cdiv class=\"BlockQuote\"\u003e \u003cp\u003eBotnets have the ability to create widespread data breach, and are masters at bypass- ing security protocols for carrying out brutal DDoS attacks Hayat et al (\u003cspan citationid=\"CR8\" class=\"CitationRef\"\u003e2022b\u003c/span\u003e)Ibrahim et al (\u003cspan citationid=\"CR9\" class=\"CitationRef\"\u003e2022a\u003c/span\u003e). With the rise in cyber threats there are defenses that we utilize and need to create new defenses but with constant vigilance Woodiss-Field et al (\u003cspan citationid=\"CR20\" class=\"CitationRef\"\u003e2024\u003c/span\u003e). It is targeted to develop a blockchain driven architecture in order to secure the IoT devices from the botnets using Blockchain technology [3] [4]. As a multi-layered secu- rity shield, Cyber Threats are kept at bay by blockchain technology Kumar et al (\u003cspan citationid=\"CR12\" class=\"CitationRef\"\u003e2022\u003c/span\u003e). Authors of Sˇarac et al (\u003cspan citationid=\"CR17\" class=\"CitationRef\"\u003e2021\u003c/span\u003e) treated it as a good barrier against cyber threats within our internet connected world.\u003c/p\u003e \u003cp\u003eWe highlight the importance of collaboration between Software Defined Networking (SDN) and blockchain technology in this paper. The decentralization of blockchain can remove a single point of failure in SDN, leading to powerful defense Feng et al (\u003cspan citationid=\"CR6\" class=\"CitationRef\"\u003e2021\u003c/span\u003e)Mishra et al (\u003cspan citationid=\"CR13\" class=\"CitationRef\"\u003e2021\u003c/span\u003e). Our research is important given the 2016 Mirai botnet attack shut down a number of global ISPs [3]. Using blockchain can make these security measures faster Eustis (\u003cspan citationid=\"CR5\" class=\"CitationRef\"\u003e2019\u003c/span\u003e). Blockchain, by maintaining a precise and immutable ledger of account information quickly uncovers and remedies problems in the network, which enhances its resilience ABBASSI and Benlahmer (\u003cspan citationid=\"CR1\" class=\"CitationRef\"\u003e2022\u003c/span\u003e).\u003c/p\u003e \u003cp\u003eThis post contains our commitment to blockchain that makes perfect sense on proof of thought and demonstration in network security improvement, securing cyber space etc. It intends to transform theoretical possibilities in revisable IoT deployments specifi- cally protecting IoT devices from botnet attacks in SDN based devices Shareef et al (\u003cspan citationid=\"CR19\" class=\"CitationRef\"\u003e2024\u003c/span\u003e). Theory paired with hands on \u0026ldquo;real world\u0026rdquo; cyber attacks in an environment simulated using simulation software.\u003c/p\u003e \u003c/div\u003e \u003c/p\u003e"},{"header":"2 Related Work","content":"\u003cp\u003eThe revolutionary blockchain framework to fight against Distributed Denial of Service (DDoS) attacks on Internet of Things (IoT)- based networks is presented in the cited study Ibrahim et al (2022b). The transaction is secured by combining decentralized Software-Defined Networking (SDN) and blockchain technology. Even with deploy- ment problems, such as scalability and privacy, the researchers adopted that ongoing research can advance technology.\u003c/p\u003e\n\u003cp\u003eBlockBot: An Architecture for Blockchain Based Botnet Detection in IIoT- salim2022blockchain BlockBot: An Architecture for Auditable and Trustworthy BotNet Detection in Industrial IoTs Salim et al (2022). Even though it is not easy to combine blockchain and IIoT; the authors stress how mature security methods are riddled with shortcomings, and elaborate some of them that transfer benefits includ- ing blockchain-integrated federated learning.\u003c/p\u003e\n\u003cp\u003eThe work in Shafi and Basit (2019) addresses a new technique to fight against DDos\u003c/p\u003e\n\u003cp\u003eBotnet attacks on IOT based devices. An effective defense against these is to quickly transfer the data into a blockchain-based system of storage as soon as an attack has taken place. The case has attracted academic interest towards a possible role for blockchain in controlling DDoS attacks.\u003c/p\u003e\n\u003cp\u003eRathore et al (2019) presents a decentralized security model for IoT networks based on blockchain known as BlockSecIoTNet approach. Ahmed et al (2019) covers different security strategies in blockchain and tributes to the vulnerability of scalability before finding a solution for privacy and seriousness.\u003c/p\u003e\n\u003cp\u003eThe detection study of securing IoT from mirai bot attacks using blockchain was dis- cussed in Hayat et al (2022a)\u0026rsquo;s article, as they used blockchain derived digital leger. It touches on IoT security measures and recognizes integration difficulties.\u003c/p\u003e\n\u003cp\u003eSDN and blockchain-based IoT multi-levelsecurity solution Roy and Srirama (2022). A study by Asif et al (2022) suggests a model combining machine learning, blockchain, and SDN to deal with botnet attacks.\u003c/p\u003e\n\u003cp\u003eBlockchain and reputation-based systems for botnet detection in Internet of Things networks Khan et al (2022) strategy. The research in Ahsan et al (2022) proposes how blockchain can be helpful for preventing Botnet activity and shows the implications of botnet mitigation with Blockchain.\u003c/p\u003e"},{"header":"3 Methods","content":"\u003cp\u003eThis research presents new approach to defense against malicious computer systems,\u0026nbsp;with\u0026nbsp;particular\u0026nbsp;reference\u0026nbsp;to\u0026nbsp;the\u0026nbsp;Internet \u0026nbsp;of \u0026nbsp; Things \u0026nbsp;(IoT). \u0026nbsp;The \u0026nbsp; strategy \u0026nbsp;intercon-\u0026nbsp;nects software-defined networking (SDN) and blockchain technology to harness SDNs\u0026rsquo;\u0026nbsp;unparalleled network management skills on the one hand, and secure, user-friendly\u0026nbsp;features\u0026nbsp;rooted\u0026nbsp;in\u0026nbsp;blockchains\u0026nbsp;on\u0026nbsp;the\u0026nbsp;other.\u003c/p\u003e\n\u003cp\u003eThat being said, the fundamental innovation of this approach is combining blockchain\u0026nbsp;techonology with SDN management to form a fortified defensive tool for the probable\u0026nbsp;botnet threats. As shown in Figure\u0026nbsp;\u003ca href=\"#_bookmark0\"\u003e1\u003c/a\u003e,the expression was quite constant among differ-\u0026nbsp;ent sublines Centralised control, As we all know being having centralised brain, SDN\u0026nbsp;completely mitigates the problem of securing the whole IoT network from a single\u0026nbsp;point.\u0026nbsp;This\u0026nbsp;central\u0026nbsp;framework\u0026nbsp;allows\u0026nbsp;security\u0026nbsp;protocols\u0026nbsp;to\u0026nbsp;be\u0026nbsp;quickly\u0026nbsp;enforced\u0026nbsp;across\u0026nbsp;all\u0026nbsp;connecting\u0026nbsp;devices.\u003c/p\u003e\n\u003cp\u003eThe blockchain model presented in the research of this paper is planned to be com-\u0026nbsp;patible\u0026nbsp;with\u0026nbsp;the\u0026nbsp;SDN\u0026nbsp;controller.\u0026nbsp;This\u0026nbsp;necessitates\u0026nbsp;the\u0026nbsp;need\u0026nbsp;of\u0026nbsp;linking\u0026nbsp;SDN\u0026nbsp;controllers\u0026nbsp;to blockchains for credible authentication. This configuration further helps to control\u0026nbsp;activities in the network system, thereby promoting security by scrutinizing functions\u0026nbsp;and prescribing regulations. This allows the SDN controller to auto-trigger and isolate\u0026nbsp;compromised devices or shutdown harmful traffic using whatever actions is supported\u0026nbsp;by the underlying network if any malicious activities detected through the blockchain.\u0026nbsp;Powered by decentralized record-keeping technology and cutting-edge cryptographic\u0026nbsp;tools, blockchain form this new method for data storing across devices environment\u0026nbsp;safely and securely. This creates a high level of stability and security in storage as well\u0026nbsp;as\u0026nbsp;the\u0026nbsp;management.\u003c/p\u003e\n\u003cp\u003eInstead, we \u0026nbsp;solve \u0026nbsp;the \u0026nbsp;problems \u0026nbsp;associated \u0026nbsp;with \u0026nbsp;traditional \u0026nbsp;hierarchies \u0026nbsp;commonly exploited as insecure ratlines. We hope to do so by embedding protocol auditable smart contracts, which list and authenticate all SDN controllers in our network. Every controller would have a specific ID that is registered on the blockchain, which guar- antee only legitimate devices to commit network operations.\u003c/p\u003e\n\u003cp\u003eThe security protocols for the established blockchain model are engaged in case of a risk to botnet attack. Smart contracts by themselves are embed software defined network- ing (SDN) controllers that take autonomous action within a set of SDN infrastructure. Such responses could involve quarantining infected devices, blocking malicious traffic or notifying security admins for additional security countermeasures.\u003c/p\u003e\n\u003ch2\u003e3.1 \u0026nbsp; Evaluation Metrics\u003c/h2\u003e\n\u003cp\u003eIt addresses an approach to lighten the above issues in the Internet of Things (IoT)\u0026nbsp;backdrop on harmful computer systems, encasing equally Network Management and\u0026nbsp;User friendly but secure characteristics of Software Defined Networking (SDN) and\u0026nbsp;Blockchain technology respectively. Based on that strategy, integration of SDN and\u0026nbsp;blockchain has the potential to be a robust countermeasure to future botnet threats.\u0026nbsp;SDN provides central controllers over the network and protection for each inimpla-\u0026nbsp;mented\u0026nbsp;security\u0026nbsp;protocol.\u003c/p\u003e\n\u003cp\u003eThe\u0026nbsp;blockchain\u0026nbsp;model\u0026nbsp;is\u0026nbsp;running\u0026nbsp;well\u0026nbsp;with\u0026nbsp;the\u0026nbsp;SDN\u0026nbsp;controller,\u0026nbsp;which \u0026nbsp;it \u0026nbsp;regularly\u0026nbsp;checks network operations and imposes rules to eliminate threats. Powered by a set of\u0026nbsp;strong cryptographic algorithms, Blockchain relies on decentralized ledger system to\u0026nbsp;create\u0026nbsp;a\u0026nbsp;structured\u0026nbsp;framework\u0026nbsp;for\u0026nbsp;storing\u0026nbsp;data\u0026nbsp;securely.\u003c/p\u003e\n\u003cp\u003eTo fix one of the most serious issues of traditional hierarchical systems, our approach\u0026nbsp;puts into practice smart contracts to record and validate all SDN controllers (regis-\u0026nbsp;tered\u0026nbsp;with\u0026nbsp;their\u0026nbsp;unique\u0026nbsp;ID\u0026nbsp;on\u0026nbsp;the\u0026nbsp;blockchain).\u0026nbsp;This\u0026nbsp;configuration\u0026nbsp;limits\u0026nbsp;the\u0026nbsp;entry\u0026nbsp;of\u0026nbsp;only\u0026nbsp;permitted\u0026nbsp;devices\u0026nbsp;to\u0026nbsp;the\u0026nbsp;network.\u003c/p\u003e\n\u003cp\u003eIf it detects a botnet attack, the blockchain model triggers security protocols. In this scenario, the SDN controllers that work within smart contracts take actions necessary to mitigate an incident: such as isolating compromised devices, dropping malicious traffic or notifying network security administrators.\u003c/p\u003e"},{"header":"4 Results","content":"\u003cp\u003eLet\u0026rsquo;s dive deeper to unveil the efficiency of our network design. Its intricate nature should be explored to cover more nuanced points all lovingly crafted. It should yield for us a careful design, deliberate test and an outstanding output through sheer hardwork. See Figure 2 That prominent mask yields a much stronger explanation \u0026mdash; the next most complete version on this topic. The design is strategic, with unique details. And the Awareness Diagram provides a likely framework to unlock that understanding \u0026mdash; breaking down what we know in useful ways, helping us discover new insights. It is certainly going to help in breaking out the whole topic just to become less complex.\u003c/p\u003e\n\u003cp\u003eThe initial round of testing was a controlled packet transmission from many hosts to switches and was designed to make sure the system actually works. Figure 3, the initial success.\u003c/p\u003e\n\u003cp\u003eWe decided to pursue a high-containment clinical trial. To explore high data transfer, we used a popular network emulator called Mininet and artificially pushed its limits to simulate some serious cyberattack scenarios as if they were really happening in production on top of a set of 4 devices custom fit for the task. Undertaking this rigorous work increased the quality of our study and improved its intensity making it even higher than expected. The strides we have made in these areas are the start of our next endeavors to combating enduring cyber threats.\u003c/p\u003e\n\u003cp\u003eFigure 4 demonstrates that our findings are reliable and valid, as reflected in suc- cessive Figure. The experiment was so sophisticated that the focused devices were isolated from all the network core, thus we maintained for ourselves only a drama of cyber threats but confirmed our model resistant against it. This somehow proves our model is capable of a flag capturing and botnet chaos preventing operation against modern cyber threats.\u003c/p\u003e\n\u003cp\u003eAfter comprehensive testing, we then conducted a thorough preliminary analysis of our network system to determine if it was operational and available. It was a key-job to achieve our main target-network optimization that most thoroughly checked every network components.\u003c/p\u003e\n\u003cp\u003eFull-end audit of the Open vSwitch (OVS) database to characterize the network behavior and identify possible security vulnerabilities.\u003c/p\u003e\n\u003cp\u003eAs expensive as the audit was in terms of human resources, it provided insights into the network architecture showing interfaces, ports and how they worked with each other. It also provided visibility into what units controlled the flow entries of network switches.\u003c/p\u003e\n\u003cp\u003eTherefore, with due care each piece of information was gathered, clearly documented and illustrated in the form of charts as presented in Figure 5.\u003c/p\u003e\n\u003cp\u003eIn this demonstration, we provide an evidence using our approach by implementing a novel blockchain and Software-Defined Networking (SDN) to network protection for improving the security status of variable IoT environment based on our recent study. Trusted to fight botnet threats by large scale trials, it separates the vulnerable IoT devices from other part of networks so as to increase the security status and maintain its continuous operation.\u003c/p\u003e\n\u003cp\u003eThe findings of the paper provide support towards operationalization of the presented theoretical concepts, and seed demonstration our approach\u0026rsquo;s efficacy for attacking botnet threats with respect their realization in SDN-IoT infrastructure based on Blockchain technology.\u003c/p\u003e\n\u003cp\u003eA smart defense against botnet threats depends on the ability of control systems to accurately recognize devices with anomalous rate of data transmission \u0026ndash; a fundamental feature of our security model.\u003c/p\u003e\n\u003cp\u003e4.1 Detection Rate\u003c/p\u003e\n\u003cp\u003eHere the first botnet detctection rate was almost 60%. This improved considerably to 95% by employing blockchain with Software-Defined Networking (SDN). This is primarily due to of the industry\u0026rsquo;s circuit breaker SDN on network control and security, as well as the decentralization, integrity, privacy center block chain. Thus data were collected to provide an indication of all aspects incorporated in the figure, this is a intentional step by step process as presented in Figure 6.\u003c/p\u003e\n\u003cp\u003e4.2 Network Traffic\u003c/p\u003e\n\u003cp\u003eWith SDN integration, our network traffic analysis went from 500 Mbps to only 350 Mbps, a 30% decrease. This gives you a lot more potential for flexibility and adds in some real time inspections. Blockchain technology also has a security aspect to tighten network security, so that it can reduce the occurrence of botnet at its source. you can see in 7.\u003c/p\u003e\n\u003cp\u003e4.3 DDoS Attacks\u003c/p\u003e\n\u003cp\u003eBotnet and DDoS Attacks have been grossly reduced, and this type of enforcement- model does wonderfully in making network security effective. Post-mitigation, daily DDoS Attacks reduced to 3 from 15 per day. This is further depicted in Figure 8, which also shows how the model normalized DDoS Attacks.\u003c/p\u003e\n\u003cp\u003e4.4 Flow Rule\u003c/p\u003e\n\u003cp\u003eWith adding blockchain technology, we have decreased the time required for updating rules by a factor of 2 \u0026mdash; 10 seconds to 5 seconds per rule. Automations of these aspects by FTISCON has allowed us to accelerate such operations include authenticating smart contracts and validating rules via blockchain consensus, which drives efficient, secure rule execution. An illustrative example is provided in Figure 9.\u003c/p\u003e\n\u003cp\u003e4.5 Security Compliance\u003c/p\u003e\n\u003cp\u003eAfter conducting a comprehensive test we can now confirm the extra-secure 95% effi- ciency offered by way of this colored coin-enhanced blockchain model. It serves as a powerful protection system against botnets for IoT devices to work efficiently. This high level of performance is clearly demonstrated in Figure 10.\u003c/p\u003e\n\u003cp\u003e4.6 Unauthorized Access\u003c/p\u003e\n\u003cp\u003eBlockchain provides Decentralization, Immutable Records, and Data Verification as its core features making the number of unauthorized network access attempted weekly reduces from 200 to 50 only. This high performance is shown in Figure 11.\u003c/p\u003e\n\u003cp\u003e4.7 System Performance\u003c/p\u003e\n\u003cp\u003eAccording to our analyses, we see a small (between 0.5 and 1.0) increase in latency, which is an acceptable trade-off for the great security improvements against botnets achieved by implementing SDN on the IoT networks. This can be seen by referring to Figure 12.\u003c/p\u003e\n\u003cp\u003e4.8 Packet Loss\u003c/p\u003e\n\u003cp\u003eAs a result, our implementation of the system witnessed a drastic reduction in package loss from 2.5% to only 0.01%, thus establishing the robustness and practicability of the system in traffic management with blockchain technology. These represent a special to bring the security of the complete system up and even in an automatic way to traffic management. The performance gained is shown in 13.\u003c/p\u003e\n\u003cp\u003eOur security measures are designed to be botnet resistant and provide device-specific threat protection for IoT. By utilising blockchain technology, we remove the single point failure risk \u0026mdash; conspiracy \u0026mdash; hence providing integrity of data like no other. Our process uses smart contracts to automatically trigger security measures, which can decrease the time-to-response and optimize for efficiency. This would make use of SDNs centralized control, harnessing blockchain decentralized trust to result in a resistible security measure for IoT devices.\u003c/p\u003e"},{"header":"5 Conclusion","content":"\u003cp\u003eIn this article, we provide the first security investigation on IoT SDN-based devices in the face with the emerging botnet threat. In this work, we present an innovative security scheme to combine SDN and blockchain technology. The idea, in short, is to anticipate botnet attacks and eliminate them efficiently before any damage is done.\u003c/p\u003e\n\n\u003cp\u003eUsing blockchain technology in our new SDN model, we propose a novel botnet defence solution. This demonstrates its agility and flexibility, making it perfect for the fast- growing IoT industry. Our model works on blockchain but more importantly, it acts as a trust enhancing, experience improving and a security layer for users.\u003c/p\u003e\n\u003cp\u003eTesting the model in a large IoT environment and other use case of detecting hidden botnet attacks has proved that this model is viable, as ISPs can then have “A New Partner” to help them minimize their risk. This has wide-ranging implications for a future that will have more secure and resilient IoT ecosystems — turning the robust cybersecurity system from a want to an urgent need as connected devices grow.\u003c/p\u003e\n\u003cp\u003eWe have a long-term solution for that, which could minimize threats and save IoT in the future. It is a revolution in technology that literally creates our world and the way we participate in it. Supporting our model to help community adoption will provide good protection for this ongoing transformation.\u003c/p\u003e"},{"header":"Declarations","content":"\u003cp\u003eFunding\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eConflict\u0026nbsp;of\u0026nbsp;interest/Competing\u0026nbsp;interests\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eEthics\u0026nbsp;approval\u0026nbsp;and\u0026nbsp;consent\u0026nbsp;to\u0026nbsp;participate\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eConsent\u0026nbsp;for\u0026nbsp;publication\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eData\u0026nbsp;availability\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eMaterials\u0026nbsp;availability\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eCode\u0026nbsp;availability\u003c/p\u003e\n\u003cp\u003eNot\u0026nbsp;applicable\u003c/p\u003e\n\u003cp\u003eAuthor\u0026nbsp;contribution\u003c/p\u003e\n\u003cp\u003eNot applicable\u003c/p\u003e"},{"header":"References","content":"\u003col\u003e\n\u003cli\u003eABBASSI Y, Benlahmer H (2022) Bcsdn-iot: Towards an iot security architecture based on sdn and blockchain. International journal of electrical and computer engineering systems 13(2):155\u0026ndash;163\u003c/li\u003e\n\u003cli\u003eAhmed Z, Danish SM, Qureshi HK, et al (2019) Protecting iots from mirai botnet attacks using blockchains. In: 2019 IEEE 24th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD), IEEE, pp 1\u0026ndash;6\u003c/li\u003e\n\u003cli\u003eAhsan M, Khan MK, Umair M (2022) A blockchain-based botnet prevention system for sdn-based iot networks using machine learning. IEEE Access 10:1\u0026ndash;1. https:// doi.org/10.1109/ACCESS.2022.3151238\u003c/li\u003e\n\u003cli\u003eAsif M, Khan MA, Khan MA (2022) Blockchain-based collaborative botnet detec- tion and mitigation system for sdn-enabled iot networks. Journal of Net- work and Computer Applications 202:105038. https://doi.org/https://doi.org/10. 1016/j.jnca.2022.105038, URL https://www.sciencedirect.com/science/article/pii/ S1084804522003585\u003c/li\u003e\n\u003cli\u003eEustis AG (2019) The mirai botnet and the importance of iot device security. In: 16th International Conference on Information Technology-New Generations (ITNG 2019), Springer, pp 85\u0026ndash;89\u003c/li\u003e\n\u003cli\u003eFeng H, Yan X, Zhou N, et al (2021) A cross-domain collaborative ddos defense scheme based on blockchain-sdn in the iot. In: Proceedings of the 2021 ACM International Conference on Intelligent Computing and its Emerging Applications, pp 77\u0026ndash;82\u003c/li\u003e\n\u003cli\u003eHayat RF, Aurangzeb S, Aleem M, et al (2022a) Ml-ddos: A blockchain-based mul- tilevel ddos mitigation mechanism for iot environments. IEEE Transactions on Engineering Management pp 1\u0026ndash;1. https://doi.org/10.1109/TEM.2022.3151236\u003c/li\u003e\n\u003cli\u003eHayat RF, Aurangzeb S, Aleem M, et al (2022b) Ml-ddos: A blockchain-based mul- tilevel ddos mitigation mechanism for iot environments. IEEE Transactions on Engineering Management\u003c/li\u003e\n\u003cli\u003eIbrahim M, Hanif M, Ahmad S, et al (2022a) Sdn based ddos mitigating approach using traffic entropy for iot network. CMC Comput Mater Contin 70:5651\u0026ndash;5665\u003c/li\u003e\n\u003cli\u003eIbrahim RF, Abu Al-Haija Q, Ahmad A (2022b) Ddos attack prevention for internet of thing devices using ethereum blockchain technology. Sensors 22(18):6806\u003c/li\u003e\n\u003cli\u003eKhan MA, Asif M, Khan MA (2022) A blockchain-based botnet mitigation system for sdn-enabled iot networks using reputation. IEEE Access 10. https://doi.org/10. 1109/ACCESS.2022.3151237\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003cli\u003eKumar R, Kumar P, Tripathi R, et al (2022) A distributed intrusion detection system to detect ddos attacks in blockchain-enabled iot network. Journal of Parallel and Distributed Computing 164:55\u0026ndash;68\u003c/li\u003e\n\u003cli\u003eMishra A, Gupta B, Perakovi\u0026acute;c D, et al (2021) Defensive approach using blockchain technology against distributed denial of service attacks. In: International Conference on Smart Systems and Advanced Computing (Syscom-2021)\u003c/li\u003e\n\u003cli\u003eRathore S, Kwon BW, Park JH (2019) Blockseciotnet: Blockchain-based decentralized security architecture for iot network. Journal of Network and Computer Applications 143:167\u0026ndash;177\u003c/li\u003e\n\u003cli\u003eRoy DG, Srirama S (2022) A blockchain-based cyber attack detection scheme for decentralized internet of things using software-defined network. Soft- ware: Practice and Experience https://doi.org/https://doi.org/10.1002/ spe.3039, URL https://onlinelibrary.wiley.com/doi/abs/10.1002/spe.3039, https://onlinelibrary.wiley.com/doi/pdf/10.1002/spe.3039\u003c/li\u003e\n\u003cli\u003eSalim MM, Comivi AK, Nurbek T, et al (2022) A blockchain-enabled secure digital twin framework for early botnet detection in iiot environment. Sensors 22(16):6133\u003c/li\u003e\n\u003cli\u003eSˇarac M, Pavlovi\u0026acute;c N, Bacanin N, et al (2021) Increasing privacy and security by inte- grating a blockchain secure interface into an iot device security gateway architecture. Energy Reports 7:8075\u0026ndash;8082\u003c/li\u003e\n\u003cli\u003eShafi Q, Basit A (2019) Ddos botnet prevention using blockchain in software defined internet of things. In: 2019 16th international Bhurban conference on applied sciences and technology (IBCAST), IEEE, pp 624\u0026ndash;628\u003c/li\u003e\n\u003cli\u003eShareef SK, Chaitanya RK, Chennupalli S, et al (2024) Enhanced botnet detection in iot networks using zebra optimization and dual-channel gan classification. Scientific Reports 14(1):17148\u003c/li\u003e\n\u003cli\u003eWoodiss-Field A, Johnstone MN, Haskell-Dowland P (2024) Examination of tradi- tional botnet detection on iot-based bots. Sensors 24(3):1027\u003c/li\u003e\n\u003c/ol\u003e"}],"fulltextSource":"","fullText":"","funders":[],"hasAdminPriorityOnWorkflow":false,"hasManuscriptDocX":true,"hasOptedInToPreprint":true,"hasPassedJournalQc":"","hasAnyPriority":true,"hideJournal":true,"highlight":"","institution":"","isAcceptedByJournal":false,"isAuthorSuppliedPdf":false,"isDeskRejected":"","isHiddenFromSearch":false,"isInQc":false,"isInWorkflow":false,"isPdf":false,"isPdfUpToDate":true,"isWithdrawnOrRetracted":false,"journal":{"display":true,"email":"[email protected]","identity":"researchsquare","isNatureJournal":false,"hasQc":true,"allowDirectSubmit":true,"externalIdentity":"","sideBox":"","snPcode":"","submissionUrl":"/submission","title":"Research Square","twitterHandle":"researchsquare","acdcEnabled":true,"dfaEnabled":false,"editorialSystem":"","reportingPortfolio":"","inReviewEnabled":false,"inReviewRevisionsEnabled":true},"keywords":"Botnet, Prevention, Blockchain, SDN, Internet of Things, Cybersecurity","lastPublishedDoi":"10.21203/rs.3.rs-5182918/v1","lastPublishedDoiUrl":"https://doi.org/10.21203/rs.3.rs-5182918/v1","license":{"name":"CC BY 4.0","url":"https://creativecommons.org/licenses/by/4.0/"},"manuscriptAbstract":"\u003cp\u003eThe Internet of Things (IoT) sector is being targeted by increasing botnets that can disrupt networks. This paper solves this problem by introducing a Software Defined Networks (SDNs) and blockchain integrated system focused on blocking IOT device botnets, such as Mirai.\u003c/p\u003e\n\u003cp\u003eTheir goal is to construct a model that combines the controllability of SDN with the unchangeable and distributed features in blockchain. It would detect botnet activities through network traffic analysis, improve security with blockchain and be a scalable solution for large networks of devices.\u003c/p\u003e\n\u003cp\u003eThe efficacy of this model was tested in a simulated environment, which resembles actual network situations. Ryu controllers synced Open vSwitch instances with emulated IoT devices using a blockchain platform made of Hyperledger Fabric. Finally, testing was carried out in Mininet, for network emulation and also ger- mini, for botnet attack simulation. Ryu applications running over x-trust-domain interfaces were developed to capture and detect botnet behaviours; as necessary, they both dropped malicious packets and took enforcement actions.\u003c/p\u003e\n\u003cp\u003eThe results proved the efficiency of the developed model to detect botnet attacks and to increase network security. Peripheral nature and scope of centralized model meant it could be deployed at a larger scale. This study paves the way for implementing proactive security solutions within IoT ecosystems.\u003c/p\u003e","manuscriptTitle":"Botnet Prevention using Blockchain for SDN based IoT Devices","msid":"","msnumber":"","nonDraftVersions":[{"code":1,"date":"2024-10-03 15:39:46","doi":"10.21203/rs.3.rs-5182918/v1","editorialEvents":[{"type":"communityComments","content":0}],"status":"published","journal":{"display":true,"email":"[email protected]","identity":"researchsquare","isNatureJournal":false,"hasQc":true,"allowDirectSubmit":true,"externalIdentity":"","sideBox":"","snPcode":"","submissionUrl":"/submission","title":"Research Square","twitterHandle":"researchsquare","acdcEnabled":true,"dfaEnabled":false,"editorialSystem":"","reportingPortfolio":"","inReviewEnabled":false,"inReviewRevisionsEnabled":true}}],"origin":"","ownerIdentity":"4e796f87-d666-4cb9-8024-a962d171464a","owner":[],"postedDate":"October 3rd, 2024","published":true,"recentEditorialEvents":[],"rejectedJournal":[],"revision":"","amendment":"","status":"posted","subjectAreas":[],"tags":[],"updatedAt":"2024-10-03T15:39:46+00:00","versionOfRecord":[],"versionCreatedAt":"2024-10-03 15:39:46","video":"","vorDoi":"","vorDoiUrl":"","workflowStages":[]},"version":"v1","identity":"rs-5182918","journalConfig":"researchsquare"},"__N_SSP":true},"page":"/article/[identity]/[[...version]]","query":{"redirect":"/article/rs-5182918","identity":"rs-5182918","version":["v1"]},"buildId":"qtupq5eGEP_6zYnWcrvyt","isFallback":false,"isExperimentalCompile":false,"dynamicIds":[84888],"gssp":true,"scriptLoader":[]}

Text is read by the "Ask this paper" AI Q&A widget below. Extraction quality varies by source — PMC NXML preserves structure cleanly, OA-HTML may include some navigation residue, and OA-PDF can have broken hyphenation. The publisher copy (via DOI) is the canonical version.

My notes (saved in your browser only)

Ask this paper AI returns verbatim quotes from the full text · source: preprint-html

Answers must be backed by verbatim quotes from this paper's full text. Hallucinated quotes are dropped automatically; if no verbatim passage answers the question, we say so. How this works

Citation neighborhood (no data yet)

We don't have any in-corpus citations linked to this paper yet. This is a recent paper (2024) — citers typically take a year or two to land, and the OpenAlex reference graph may still be filling in.

Source provenance

europepmc
last seen: 2026-05-20T01:45:00.602351+00:00