Zahrah A. Almusaylim,NZ Jhanjhi,Abdulaziz Alhumam

DOI: https://doi.org/10.3390/s20215997

IF: 3.9

2020-10-22

Sensors

Abstract:The rapid growth of the Internet of Things (IoT) and the massive propagation of wireless technologies has revealed recent opportunities for development in various domains of real life, such as smart cities and E-Health applications. A slight defense against different forms of attack is offered for the current secure and lightweight Routing Protocol for Low Power and Lossy Networks (RPL) of IoT resource-constrained devices. Data packets are highly likely to be exposed in transmission during data packet routing. The RPL rank and version number attacks, which are two forms of RPL attacks, can have critical consequences for RPL networks. The studies conducted on these attacks have several security defects and performance shortcomings. In this research, we propose a Secure RPL Routing Protocol (SRPL-RP) for rank and version number attacks. This mainly detects, mitigates, and isolates attacks in RPL networks. The detection is based on a comparison of the rank strategy. The mitigation uses threshold and attack status tables, and the isolation adds them to a blacklist table and alerts nodes to skip them. SRPL-RP supports diverse types of network topologies and is comprehensively analyzed with multiple studies, such as Standard RPL with Attacks, Sink-Based Intrusion Detection Systems (SBIDS), and RPL+Shield. The analysis results showed that the SRPL-RP achieved significant improvements with a Packet Delivery Ratio (PDR) of 98.48%, a control message value of 991 packets/s, and an average energy consumption of 1231.75 joules. SRPL-RP provided a better accuracy rate of 98.30% under the attacks.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Abhishek Verma,Virender Ranga

DOI: https://doi.org/10.1109/JSEN.2020.2973677

2023-03-01

Abstract:Internet of Things (IoT) is one of the fastest emerging networking paradigms enabling a large number of applications for the benefit of mankind. Advancements in embedded system technology and compressed IPv6 have enabled the support of IP stack in resource constrained heterogeneous smart devices. However, global connectivity and resource constrained characteristics of smart devices have exposed them to different insider and outsider attacks, which put users' security and privacy at risk. Various risks associated with IoT slow down its growth and become an obstruction in the worldwide adoption of its applications. In RFC 6550, the IPv6 Routing Protocol for Low Power and Lossy Network (RPL) is specified by IETF's ROLL working group for facilitating efficient routing in 6LoWPAN networks, while considering its limitations. Due to resource constrained nature of nodes in the IoT, RPL is vulnerable to many attacks that consume the node's resources and degrade the network's performance. In this paper, we present a study on various attacks and their existing defense solutions, particularly to RPL. Open research issues, challenges, and future directions specific to RPL security are also discussed. A taxonomy of RPL attacks, considering the essential attributes like resources, topology, and traffic, is shown for better understanding. In addition, a study of existing cross-layered and RPL specific network layer based defense solutions suggested in the literature is also carried out.

Networking and Internet Architecture,Cryptography and Security

Murtaja Ali Saare,Saima Anwar Lashari,Ayman Khalil,Mahmood A. Al-Shareeda,Selvakumar Manickam

DOI: https://doi.org/10.11591/ijeecs.v32.i2.pp865-876

2023-11-01

Indonesian Journal of Electrical Engineering and Computer Science

Abstract:The growth of internet of things (IoT) devices and apps has caused disruptions in key sectors such as smart environment, healthcare, and mission-critical tool. Security of IoT devices, networks, and infrastructure is the biggest challenge. RPL, a routing protocol optimised for low-power and lossy networks, is applied by the IoT to offer seamless information transfer among the myriad of interconnected entities. So, the paper delves into the nuts and bolts of RPL, covering its protocol settings, trickle timer, and objective function, as well as the IoT’s architecture and applications. This article also provides a framework for categorising past research on the effects of RPL-IoT on energy consumption, transportation, service quality, traffic congestion, and safety. The future of energy efficiency, congestion, objective function, mobility, stability, security, collaborative intrusion detection systems, active learning, and Key Management are all considered in this analysis.

Amal Hkiri,Mouna Karmani,Omar Ben Bahri,Ahmed Mohammed Murayr,Fawaz Hassan Alasmari,Mohsen Machhout

DOI: https://doi.org/10.32604/cmc.2023.047087

2024-01-01

Abstract:The RPL (IPv6 Routing Protocol for Low-Power and Lossy Networks) protocol is essential for efficient communication within the Internet of Things (IoT) ecosystem. Despite its significance, RPL’s susceptibility to attacks remains a concern. This paper presents a comprehensive simulation-based analysis of the RPL protocol’s vulnerability to the decreased rank attack in both static and mobile network environments. We employ the Random Direction Mobility Model (RDM) for mobile scenarios within the Cooja simulator. Our systematic evaluation focuses on critical performance metrics, including Packet Delivery Ratio (PDR), Average End to End Delay (AE2ED), throughput, Expected Transmission Count (ETX), and Average Power Consumption (APC). Our findings illuminate the disruptive impact of this attack on the routing hierarchy, resulting in decreased PDR and throughput, increased AE2ED, ETX, and APC. These results underscore the urgent need for robust security measures to protect RPL-based IoT networks. Furthermore, our study emphasizes the exacerbated impact of the attack in mobile scenarios, highlighting the evolving security requirements of IoT networks.

computer science, information systems,materials science, multidisciplinary

Mina Zaminkar,Reza Fotohi

DOI: https://doi.org/10.48550/arXiv.2005.09140

2020-05-17

Cryptography and Security

Abstract:Through the Internet of Things (IoT) the internet scope is established by the integration of physical things to classify themselves into mutual things. A physical thing can be created by this inventive perception to signify itself in the digital world. Regarding the physical things that are related to the internet, it is worth noting that considering numerous theories and upcoming predictions, they mostly require protected structures, moreover, they are at risk of several attacks. IoTs are endowed with particular routing disobedience called sinkhole attack owing to their distributed features. In these attacks, a malicious node broadcasts illusive information regarding the routings to impose itself as a route towards specific nodes for the neighboring nodes and thus, attract data traffic. RPL (IP-V6 routing protocol for efficient and low-energy networks) is a standard routing protocol which is mainly employed in sensor networks and IoT. This protocol is called SoS-RPL consisting of two key sections of the sinkhole detection. In the first section rating and ranking the nodes in the RPL is carried out based on distance measurements. The second section is in charge of discovering the misbehavior sources within the IoT network through, the Average Packet Transmission RREQ (APT-RREQ). Here, the technique is assessed through wide simulations performed within the NS-3 environment. Based on the results of the simulation, it is indicated that the IoT network behavior metrics are enhanced based on the detection rate, false-negative rate, false-positive rate, packet delivery rate, maximum throughput, and packet loss rate.

Somnath Karmakar,Jayasree Sengupta,Sipra Das Bit

DOI: https://doi.org/10.1109/comsnets51098.2021.9352937

2021-01-05

Abstract:In recent times researchers have found several security vulnerabilities in the Routing Protocol for Low power and Lossy network (RPL), amongst which rank attack is a predominant one causing detrimental effects on the network by creating a fake topology. To address this concern, we propose a low-overhead rank attack detection scheme for non-storing mode of RPL used in IoT to deal with both increased and decreased rank attacks. Accordingly, we have modified the RPL Destination Oriented Directed Acyclic Graph (DODAG) formation algorithm to detect rank attacks during topology formation and maintenance. The distributed module of the algorithm runs in all the participating nodes whereas the centralized module runs in the sink. Unlike many existing schemes, instead of sending additional control message, we make the scheme low-overhead by simply modifying the DAO control message. Additionally, a lightweight Message Authentication Code (HMAC-LOCHA) is used to verify the integrity and authenticity of the control messages exchanged between nodes and the sink. The correctness of the proposed scheme is established through a concrete proof using multiple test case scenarios. Finally, the performance of the proposed scheme is evaluated both theoretically and through simulation in Contiki-based Cooja simulator. Theoretical evaluation proves the scheme’s energy efficiency. Simulation results show that our scheme outperforms over a state-of-the-art rank attack detection scheme in terms of detection accuracy, false positive/negative rate and energy consumption while also keeping acceptable network performance such as improved detection latency and at par packet delivery ratio.

B. Ghaleb,A. Al-Dubai,A. Hussain,J. Ahmad,I. Romdhani,Z. Jaroucheh

2023-05-17

Abstract:The Routing Protocol for Low power and Lossy networks (RPL) has been developed by the Internet Engineering Task Force (IETF) standardization body to serve as a part of the 6LoWPAN (IPv6 over Low-Power Wireless Personal Area Networks) standard, a core communication technology for the Internet of Things (IoT) networks. RPL organizes its network in the form of a tree-like structure where a node is configured as the root of the tree while others integrate themselves into that structure based on their relative distance. A value called the Rank is used to define each node's relative position and it is used by other nodes to take their routing decisions. A malicious node can illegitimately claim a closer position to the root by advertising a lower rank value trapping other nodes to forward their traffic through that malicious node. In this study, we show how this behavior can have a detrimental side effect on the network via extensive simulations and propose a new secure objective function to prevent such an attack.

Networking and Internet Architecture,Cryptography and Security

S. Remya,Manu J. Pillai,C. Arjun,Somula Ramasubbareddy,Yongyun Cho

DOI: https://doi.org/10.1109/access.2024.3391918

IF: 3.9

2024-05-03

IEEE Access

Abstract:An extensive worldwide network known as the Internet of Things (IoT) links different electronic devices and facilitates easy communication and group work. This interdependency is especially apparent in Low Power and Lossy Networks (LLNs), where resource-constrained devices adhere to specified protocols for effective communication. Such systems frequently use Routing Protocol for LLNs (RPL). Nevertheless, due to its basic simplicity, there are numerous ways to exploit it, thereby compromising network security. It is also difficult to carry out complex computational operations on LLNs due to their resource constraints. A highly developed system called the Trust-Based Intrusion Detection System for RPL (TIDSRPL) is presented in this research study. Complex trust computations are offloaded to the root node by TIDSRPL, which assesses node trust based on network behavior. Reduce the possibility of resource depletion with this strategic transfer that preserves energy, storage, and computational resources at the node level. Comparative analysis with the default RPL Objective Function (OF), MRHOF-RPL, demonstrates TIDSRPL's superior efficacy in detecting and isolating malicious nodes engaged in Sinkhole, Selective forwarding, and Sybil attacks. Notably, TIDSRPL exhibits a 20-35% reduction in average packet loss ratio and attains 33-45% greater energy efficiency compared to MRHOF-RPL, reinforcing its robustness in securing LLN operations.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jun Jiang,Yuhong Liu

DOI: https://doi.org/10.48550/arXiv.2201.06937

2022-01-18

Abstract:IPv6 Routing Protocol for Low Power and Lossy Networks (RPL) is an essential routing protocol to enable communications for IoT networks with low power devices. RPL uses an objective function and routing constraints to find an optimized routing path for each node in the network. However, recent research has shown that topological attacks, such as selective forwarding attacks, pose great challenges to the secure routing of IoT networks. Many conventional secure routing solutions, on the other hand, are computationally heavy to be directly applied in resource-constrained IoT networks. There is an urgent need to develop lightweight secure routing solutions for IoT networks. In this paper, we first design and implement a series of advanced selective forwarding attacks from the attack perspective, which can flexibly select the type and percentage of forwarding packets in an energy efficient way, and even bad-mouth other innocent nodes in the network. Experiment results show that the proposed attacks can maximize the attack consequences (i.e. number of dropped packets) while maintaining undetected. Moreover, we propose a lightweight trust-based defense solution to detect and eliminate malicious selective forwarding nodes from the network. The results show that the proposed defense solution can achieve high detection accuracy with very limited extra energy usage (i.e. 3.4%).

Networking and Internet Architecture

Hanane Azzaoui,Akram Zine Eddine Boukhamla,Pericle Perazzo,Mamoun Alazab,Vinayakumar Ravi

DOI: https://doi.org/10.1007/s11277-024-11009-2

IF: 2.017

2024-04-14

Wireless Personal Communications

Abstract:The successful deployment of an Intrusion Detection System (IDS) in the Internet of Things (IoT) is subject to two primary criteria: the detection method and the deployment strategy. IDS schemes should take into account that IoT devices often have limited resources. Thus, IDS should be limited in devices' memory and power usage. In this paper, we design, implement, and evaluate an effective cross-layer lightweight IDS scheme for the IoT (RPL-IDS). The proposed IDS scheme cooperates with the RPL routing protocol using its selected parents as distributed agents. A lightweight artificial neural network (ANN) model is deployed in these agents to detect malicious traffic and collaborates with a centralized system. According to the topology built by the Routing Protocol for Low-Power and Lossy Networks (RPL), these agents are automatically selected, i.e., the routers (parents) of the topology are chosen to act as IDS agents. We implemented RPL-IDS using the Contiki operating system and then comprehensively evaluated it with the Cooja simulator. Experimental results indicate that RPL-IDS is lightweight and can be deployed on devices with limited resources. Most state-of-the-art IDS schemes do not consider the limitation of resources of IoT devices, making them impractical for deployment in many IoT applications. Furthermore, the proposed RPL-IDS demonstrated one of the highest detection rates in the literature while incurring an insignificant energy overload, allowing for scalability in large-scale networks.

telecommunications

Sachin Kumar Verma,Abhishek Verma,Avinash Chandra Pandey

DOI: https://doi.org/10.1109/TENSYMP54529.2022.9864545

2023-03-01

Abstract:Low-Power and Lossy Networks (LLNs) run on resource-constrained devices and play a key role in many Industrial Internet of Things and Cyber-Physical Systems based applications. But, achieving an energy-efficient routing in LLNs is a major challenge nowadays. This challenge is addressed by Routing Protocol for Low-power Lossy Networks (RPL), which is specified in RFC 6550 as a "Proposed Standard" at present. In RPL, a client node uses Destination Advertisement Object (DAO) control messages to pass on the destination information towards the root node. An attacker may exploit the DAO sending mechanism of RPL to perform a DAO Insider attack in LLNs. In this paper, it is shown that an aggressive attacker can drastically degrade the network performance. To address DAO Insider attack, a lightweight defense solution is proposed. The proposed solution uses an early blacklisting strategy to significantly mitigate the attack and restore RPL performance. The proposed solution is implemented and tested on Cooja Simulator.

Cryptography and Security,Networking and Internet Architecture

Erukala Suresh Babu,Bhukya Padma,Soumya Ranjan Nayak,Nazeeruddin Mohammad,Uttam Ghosh

DOI: https://doi.org/10.4018/jdm.324099

IF: 2.656

2023-06-08

Journal of Database Management

Abstract:Internet of everything (IoET) is one of the key integrators in Industry 4.0, which contributes to large-scale deployment of low-power and lossy (LLN) networks to connecting people, processes, data, and things. The RPL is one of the unique standardized routing protocols that enable efficient use of smart devices energy, compute resources to address the properties and constraints of LLN networks. The authors investigate the RPL-AODV routing protocol's performance in combining the advantages of both RPL and AODV routing protocol, which works together in a low power resource-constrained network. The main challenging issue is collaborating the AODV and RPL routing protocol in the LLN network. This paper also models the collaborative attacks such as wormhole, blackhole attack for AODV, and rank and sinkhole attacks to exploit the vulnerability of RPL protocol. Finally, the cooperative IDS combining specification-based and signature-based IDS is proposed to detect the collaborative attacks against the RPL-AODV routing protocol that effectively monitors and provides security to the LLN networks.

computer science, information systems, software engineering

Abhishek Verma,Sachin Kumar Verma,Avinash Chandra Pandey,Jyoti Grover,Girish Sharma

DOI: https://doi.org/10.1016/j.future.2024.05.032

2024-09-16

Abstract:Many IoT applications run on a wireless infrastructure supported by resource-constrained nodes which is popularly known as Low-Power and Lossy Networks (LLNs). Currently, LLNs play a vital role in digital transformation of industries. The resource limitations of LLNs restrict the usage of traditional routing protocols and therefore require an energy-efficient routing solution. IETF's Routing Protocol for Low-power Lossy Networks (RPL, pronounced 'ripple') is one of the most popular energy-efficient protocols for LLNs, specified in RFC 6550. In RPL, Destination Advertisement Object (DAO) control message is transmitted by a child node to pass on its reachability information to its immediate parent or root node. An attacker may exploit the insecure DAO sending mechanism of RPL to perform 'DAO insider attack' by transmitting DAO multiple times. This paper shows that an aggressive DAO insider attacker can drastically degrade network performance. We propose a Lightweight Mitigation Solution for DAO insider attack, which is termed as 'Li-MSD'. Li-MSD uses a blacklisting strategy to mitigate the attack and restore RPL performance, significantly. By using simulations, it is shown that Li-MSD outperforms the existing solution in the literature.

Networking and Internet Architecture,Cryptography and Security

Amal Hkiri,Sami Alqurashi,Omar Ben Bahri,Mouna Karmani,Hamzah Faraj,Mohsen Machhout

DOI: https://doi.org/10.3390/electronics13112226

IF: 2.9

2024-06-07

Electronics

Abstract:The RPL protocol is essential for efficient communication within the Internet of Things (IoT) ecosystem, yet it remains vulnerable to various attacks, particularly in dense and mobile environments where it shows certain limitations and susceptibilities. This paper presents a comprehensive simulation-based analysis of the RPL protocol's vulnerability to the Hello Flood attack in mobile environments. Using four different group mobility models—the Column Mobility Model (CMM), Reference Point Group Mobility Model (RPGM), Nomadic Community Mobility Model (NCM), and Pursue Mobility Model (PMM)—within the Cooja simulator, this study uniquely investigates the Hello Flood attack in mobile settings, an area previously overlooked. Our systematic evaluation focuses on critical performance metrics, including the Packet Delivery Ratio (PDR), End-to-End Delay (E2ED), throughput, Expected Transmission Count (ETX), and Average Power Consumption (APC). The findings reveal several key insights: PDR decreases significantly, indicating increased packet loss or delivery failures; ETX values rise, necessitating more packet retransmissions and routing hops; E2ED increases, introducing delays in routing decisions and data transmission times; throughput declines as the attack disrupts data flow; and APC escalates due to higher energy usage on packet transmissions, especially over extended paths. These results underscore the urgent need for robust security measures to protect RPL-based IoT networks in mobile environments. Furthermore, our work emphasizes the exacerbated impact of the attack in mobile scenarios, highlighting the evolving security requirements of IoT networks.

engineering, electrical & electronic,physics, applied,computer science, information systems

Muhammad Ali Khan,Rao Naveed Bin Rais,Osman Khalid,Sanan Ahmad

DOI: https://doi.org/10.3390/s24061775

IF: 3.9

2024-03-10

Sensors

Abstract:The Internet of Things (IoT) is empowering various sectors and aspects of daily life. Green IoT systems typically involve Low-Power and Lossy Networks (LLNs) with resource-constrained nodes. Lightweight routing protocols, such as the Routing Protocol for Low-Power and Lossy Networks (RPL), are increasingly being applied for efficient communication in LLNs. However, RPL is susceptible to various attacks, such as the black hole attack, which compromises network security. The existing black hole attack detection methods in Green IoT rely on static thresholds and unreliable metrics to compute trust scores. This results in increasing false positive rates, especially in resource-constrained IoT environments. To overcome these limitations, we propose a delta-threshold-based trust model called the Optimized Reporting Module (ORM) to mitigate black hole attacks in Green IoT systems. The proposed scheme comprises both direct trust and indirect trust and utilizes a forgetting curve. Direct trust is derived from performance metrics, including honesty, dishonesty, energy, and unselfishness. Indirect trust requires the use of similarity. The forgetting curve provides a mechanism to consider the most significant and recent feedback from direct and indirect trust. To assess the efficacy of the proposed scheme, we compare it with the well-known trust-based attack detection scheme. Simulation results demonstrate that the proposed scheme has a higher detection rate and low false positive alarms compared to the existing scheme, confirming the applicability of the proposed scheme in green IoT systems.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Ghulam Shabbir,Adeel Akram,Muhammad Munwar Iqbal,Sohail Jabbar,Mai Alfawair,Junaid Chaudhry

DOI: https://doi.org/10.1007/s10766-018-0620-8

2018-12-19

International Journal of Parallel Programming

Abstract:Software Defined Network (SDN) brought revolution in the network field with the partnership of Academia and Industry.SDN bridges the gap to overcome issues of IoT deployment, optimization and better utilization of network resources. The escalation in resource congestion in Wireless Sensor Networks (WSNs) can usually lead to scalability, data computation or storage, and energy efficiency problems with only a single sink node for data acquisition. Internet of Things (IoT) has resource and energy constraints for WSN devices. Low Power and Lossy Networks (LLNs) ought to be optimized for traffic with multiple sinks. RPL routing has constraints to support this approach. However, RPL inherits the ability to offer features like Auto-Configuration, Self-Healing, Loop avoidance, and detection. These features of RPL can be transformed into the improved performance of a WSN by increasing the number of sinks with a linear increase of data transmitting nodes in the network. Further, to mitigate the escalated computing needs, edge computing has emerged as a new paradigm to resolve SDN-enabled IoT and localized computing needs. This study proposes an SDN-based solution to the interconnectivity of resource constraint LLN devices with edge computing routers in mesh and cluster topological scenario using RPL as IoT routing protocol. Performance evaluation concerning different routing metrics and objective functions: Minimum Rank with Hysteresis Function (MRHOF) and Zero (OF0) are analyzed. COOJA simulator is used for emulation of random as well as linear grid topologies for the creation of WSN static nodes. Simulation results confirm that the gradual increase of a number of nodes from 16, 32, 48, 64 and a simultaneous increase in sinks nodes as 1, 2, 3, 4 respectively in LLN network reflects the desired advantages with the stable network.

computer science, theory & methods

Amira Zrelli

DOI: https://doi.org/10.1007/s11277-021-09116-5

IF: 2.017

2021-09-15

Wireless Personal Communications

Abstract:In this paper, we introduce a survey of routing protocols for inter- net of things (IoT). We provide an overview of hardware and software plat- forms for IoT applications. Therefore, we give a comparison between several operating systems (Contiki, TinyOS, WSN open, etc.) We compare the whole technologies adapted to IoT applications such as RFID (Radio frequency identification), Bluetooth, NFC (Near Field Communication), etc. Several IoT applications are exhibited like smart homes, smart building, smart environment, health care. These applications require efficient network coverage and connectivity, also it inquire intelligent routing protocols. All developments in routing protocols for Internet of Things aim to optimize the energy consumption and information flow in several applications particularly WSN/IoT applications. Hence, we treat the problem of energy consumption caused by routing proto-cols. We consider the case of the famous protocols AODV (Ad hoc on Demand Distance Vector) and RPL (IPv6 Routing Protocol for Low-Power and Lossy Networks). Then, we compare the performance of RPL and AODV protocols. Results demonstrate that in terms of energy consumption RPL protocol is the most suitable for WSN/IoT applications, also the results show that Sky mote can be considered as the appropriate mote applied to guarantee quality of service of IoT applications.

telecommunications

Vinod Kumar,Rakesh Kumar Jha,Sanjeev Jain

DOI: https://doi.org/10.1007/s11277-020-07346-7

IF: 2.017

2020-04-15

Wireless Personal Communications

Abstract:In the past few years, the term Internet of Things (IoT) has become very prevalent. In IoT, aggregation of data (from sensors) to processing the data (to the cloud) is energy constraint. To address this challenge, Narrowband- Internet of Things (NB-IoT) is becoming a popular choice for smart devices manufacturer due to its characteristics of high energy-efficient and long battery life. Researchers and academia have addressed the problem related to energy constraints, but it opens the door for security issues related to NB-IoT devices. In this paper, we have done a survey closely related to security issues related to NB-IoT technologies like RFID, WSN, WoT, and IoT. IoT is enabled with five-layered architectures, and each layer is <i>prone</i> to different security attacks. In this paper, we have provided a comparative analysis of security issues in a layer-based approach. We propose the different possible security attacks like shared node attack, synchronization attack, node failure attack, source code attack, and battery drainage attack associated with NB-IoT. To do the performance analysis of security attacks, related matrix, and their mathematical formulation is based on Secrecy Rate and Secrecy Outage Probability for the smart home application. This paper also raises security issues related to smart health and smart agriculture applications.

telecommunications

Semih Cakir,Sinan Toklu,Nesibe Yalcin

DOI: https://doi.org/10.1109/access.2020.3029191

IF: 3.9

2020-01-01

IEEE Access

Abstract:Cyberattacks targeting Internet of Things (IoT), have increased significantly, over the past decade, with the spread of internet-connected smart devices and applications. Routing Protocol for Low-Power and Lossy Network (RPL) enables messages to be routed between nodes for the Wireless Sensor Network in the network layer. RPL protocol, which is sensitive and difficult to protect, is exposed to various attacks. These attacks negatively affect data transmission and cause great destruction to the topology by consuming the resources. Hello Flooding (HF) attacks against RPL cause consumption of constrained resources (memory, processing and energy) in nodes. Therefore, in this study, a Gated Recurrent Unit network model based deep learning has been proposed to predict and prevent HF attacks on RPL protocol in IoT networks. The proposed model has been compared with Support Vector Machine and Logistic Regression methods, and different power states and total energy consumptions of the nodes have been taken into consideration and experimented with. The results confirm the promised and expected performance from the model in terms of source efficiency and IoT security. In addition, attack detection has been carried out with a much lower error rate than literature studies for HF attacks from RPL flood attacks.

computer science, information systems,telecommunications,engineering, electrical & electronic