Shallow Learning Techniques for Early Detection and Classification of Cyberattacks over MQTT IoT Networks

Simple item page
UDC.coleccionInvestigación
UDC.departamentoEnxeñaría Industrial
UDC.departamentoCiencias da Computación e Tecnoloxías da Información
UDC.grupoInvCiencia e Técnica Cibernética (CTC)
UDC.grupoInvLaboratorio de Investigación e Desenvolvemento en Intelixencia Artificial (LIDIA)
UDC.institutoCentroCITIC - Centro de Investigación de Tecnoloxías da Información e da Comunicación
UDC.issue2
UDC.journalTitleSensors
UDC.startPage468
UDC.volume26
dc.contributor.authorDíaz-Longueira, Antonio
dc.contributor.authorAveleira Mata, Jose Antonio
dc.contributor.authorMichelena, Álvaro
dc.contributor.authorPiñón-Pazos, A.
dc.contributor.authorFontenla-Romero, Óscar
dc.contributor.authorCalvo-Rolle, José Luis
dc.date.accessioned2026-04-10T11:01:33Z
dc.date.available2026-04-10T11:01:33Z
dc.date.issued2026-01-10
dc.description.abstract[Abstract] The increasing global connectivity, driven by the expansion of the Internet of Things (IoT), is generating a significant increase in system vulnerabilities. Cyberattackers exploit the computing and processing limitations of typical IoT devices and take advantage of inherent vulnerabilities in wireless networks and protocols to attack networks, compromise infrastructure, and cause damage. This paper presents a shallow learning multiclassifier approach for detecting and classifying cyberattacks on IoT networks. Specifically, it addresses MQTT networks, widely used in the IoT, to detect Denial-of-Service (DoS) and Intrusion attacks, using inter-device communication data as a basis. The use of shallow learning techniques allows this cybersecurity system to be implemented on resource-constrained devices, enabling local network monitoring and, consequently, increasing security and incident response capabilities by detecting and identifying attacks. The proposed system is validated on a real dataset obtained from an IoT system over MQTT, demonstrating its correct operation by achieving an accuracy greater than 99% and F1-score greater than 80% in the detection of Intrusion attacks.
dc.description.sponsorshipAntonio Díaz-Longueira’s research was supported by the Xunta de Galicia (Regional Government of Galicia) through grants to Ph.D. (http://gain.xunta.gal, accessed on 22 November 2025), under the “Axudas á etapa predoutoral” grant with reference: ED481A-2023-072. Xunta de Galicia. Grants for the consolidation and structuring of competitive research units, GPC (ED431B 2023/49). CITIC, as a center accredited for excellence within the Galician University System and a member of the CIGUS Network, receives subsidies from the Department of Education, Science, Universities, and Vocational Training of the Xunta de Galicia. Additionally, it is co-financed by the EU through the FEDER Galicia 2021-27 operational program (Ref. ED431G 2023/01). This activity is carried out in execution of the Strategic Project “Critical infrastructures cybersecure through intelligent modeling of attacks, vulnerabilities and increased security of their IoT devices for the water supply sector” (C061_/23), the result of a collaboration agreement signed between the National Institute of Cybersecurity (INCIBE) and the University of A Coruña. This initiative is carried out within the framework of the funds of the Recovery, Transformation and Resilience Plan, financed by the European Union (Next Generation), the project of the Government of Spain that outlines the roadmap for the modernization of the Spanish economy, the recovery of economic growth and job creation, for the solid, inclusive and resilient economic reconstruction after the COVID19 crisis, and to respond to the challenges of the next decade. Grant PID2022-137152NB-I00 funded by MICIU/AEI/10.13039/501100011033 and by ERDF/EU.
dc.description.sponsorshipXunta de Galicia; ED481A-2023-072
dc.description.sponsorshipXunta de Galicia; ED431B 2023/49
dc.description.sponsorshipXunta de Galicia; ED431G 2023/01
dc.description.sponsorshipInstituto Nacional de Ciberseguridad; C061/23
dc.identifier.citationDíaz-Longueira, A.; Aveleira-Mata, J.; Michelena, Á.; Piñón-Pazos, A.-J.; Fontenla-Romero, Ó.; Calvo-Rolle, J.L. Shallow Learning Techniques for Early Detection and Classification of Cyberattacks over MQTT IoT Networks. Sensors 2026, 26, 468. https://doi.org/10.3390/s26020468
dc.identifier.doi10.3390/s26020468
dc.identifier.issn1424-8220
dc.identifier.urihttps://hdl.handle.net/2183/47932
dc.language.isoeng
dc.publisherMDPI
dc.relation.projectIDinfo:eu-repo/grantAgreement/MUNI/Plan Estatal de Investigación Científica y Técnica y de Innovación 2021-2023/FPU21%2F00932/ES
dc.relation.projectIDinfo:eu-repo/grantAgreement/AEI/Plan Estatal de Investigación Científica y Técnica y de Innovación 2021-2023/PID2022-137152NB-I00/ES/SISTEMA INTELIGENTE PARA LA GESTION OPTIMA DE LA RED DE AGUAS EN CIUDADES/SIGORAC
dc.relation.urihttps://doi.org/10.3390/s26020468
dc.rightsAttribution 4.0 Internationalen
dc.rights.accessRightsopen access
dc.rights.urihttp://creativecommons.org/licenses/by/4.0/
dc.subjectMQTT protocol
dc.subjectCybersecurity
dc.subjectShallow learning
dc.subjectDoS attack
dc.subjectUnauthorized client attack
dc.subjectMulticlass classification
dc.titleShallow Learning Techniques for Early Detection and Classification of Cyberattacks over MQTT IoT Networks
dc.typejournal article
dc.type.hasVersionVoR
dspace.entity.typePublication
relation.isAuthorOfPublication2fdbaa46-5d36-406c-bce3-8ae6aa50c3a6
relation.isAuthorOfPublication0e442a82-5ca4-440a-8240-4c806328edf8
relation.isAuthorOfPublication6981883a-51de-42e8-9dfc-35a78626fd7b
relation.isAuthorOfPublication3eef0200-4ae7-4fc8-9ffe-2e7928ffd1cd
relation.isAuthorOfPublication89839e9c-9a8a-4d27-beb7-476cfab8965e
relation.isAuthorOfPublication.latestForDiscovery2fdbaa46-5d36-406c-bce3-8ae6aa50c3a6

Files

Original bundle

Now showing 1 - 1 of 1
Thumbnail Image
Name:
Diaz-Longueira_Antonio_2026_Shallow-learning-techniques_early_detection_classification-cyberattacks.pdf
Size:
826.8 KB
Format:
Adobe Portable Document Format
Download

Collections

Investigación (EPEF)