Integrated Smart IoT Infrastructure Management Using Window Blockchain and Whale LSTM Approaches

Abstract

Internet of Things (IoT) is playing a vital role in the smart infrastructure environment. The IoT vendors are delivering their products in the market without any concern about the security of the devices, so it is an open number of security issues on the IoT devices and data. Security threats are growing high because existing techniques measures are inadequate; two of the most significant concerns in IoT are security and privacy. Due to the IoT devices limited CPU, storage, and energy resources, existing security architectures are unable to provide the key safety requirements, so deep learning and blockchain algorithms are used. These IoT devices give accurate results from heavy complex datasets. Furthermore, blockchain and deep learning model are very familiar to give secured devices to IoT. This proposed model is window blockchain (WBC). In proof-of-work, it leverages past (n − 1) hash to construct the next hash with minimal change; because of this quick block analysis time, we can easily prevent IoT devices from the attackers. WBC’s performance is evaluated using an actual data stream generated by one of the analyzed smart infrastructure devices. Another method using deep learning hybrid algorithms for LSTM networks with whale optimization algorithm is a new schema optimization technique that mimics humpback whales’ intelligent bubble-net fishing activity. It is an easy, powerful, and predator probabilistic optimization algorithm that can avoid local optima and find global optimal answer. The findings indicate that the proposed window blockchain model improves security and reduces memory utilization this employing limited resources. In the Whale +LSTM (WLSTM), a large number of the dataset were gathered using a real-time scenario using OMNET++IoT plugins, and a Python API is created to insert various malicious activity through networks. The proposed WLSTM model output of 99% has been tested and related to other deep learning utilizing benchmark datasets such as CIDDC-001, UNSWN15, and KDD datasets, as well as actual datasets; the prediction of unknown threats is used to tackle the computation complexity in big networks.

1 Introduction

Smart infrastructure is focusing to provide effective solutions. The term “smart city” refers to the use of innovation solutions for improving residents' standard of living, improve government communication, and long term competitive advantage growth. IoT device has increasing count of heterogeneous devices interconnect with Internet [1]. The main challenges are to give safety and security to these devices, which work with lower energy, constraint data, communication protocol, and geographical devices. IoT devices are free to network access, very simple to pull hackers. The combination of these IoT devices with build and workable networks can easily intrude into the IoT network (Fig. 1).

Fig. 1

IoT smart infrastructure network with blockchain security

In the blockchain each transactions are stored in blocks of data, which is encrypted by hashing part of the previous (n − 1) block. Blockchain is unchangeable; storage blocks can only be involved. A P2P (peer-peer) network communication for the blockchain of records is permitting requests to access the data carried in every record by communicating the entire model to all the nodes used a blockchain consensus algorithm (BCA) to give the solution to more secure IoT transfer devices. Other than that, it is more secure to apply consensus with hash encryption to give safety interconnected with blocks together [2].

Block structure in blockchain is a list of blocks that are added to each other in sequential order, almost like a chain. Each block is a data structure containing transactions and is connected to other blocks using an ordered linked list structure. Main data: Transaction data will be stored in blocks. This transaction data is determined by the blockchain’s usage factor or the relevant services for which the blockchain is used. Business transaction data would be processed by financial institutions, such as banks. Timestamp: The blocks would also have a timestamp. The timestamp in this case includes the date and time when a specific block is created. Hash: Each block’s hash is a unique number created by a cryptography hash algorithm such as SHA-256. The present block’s hash as well as the preceding block’s hash will be stored in the block. Merkle tree root hash is made up of all the hash for each transaction in a block, and it executes a computational hash calculation to generate a 64-character code. For fast performance and faster data verification, the hashing of the Merkle tree root of all block data is stored. Nonce once is a 4-byte number that is generated at random and can only be used once in an encrypted transaction process. In a proof-of-work algorithm, the nonce is often used as a counter that miners try to solve to generate a new block during the mining process [3] (Fig. 2).

Fig. 2

WBC of window size 61 blocks. (a) Initial window. (b) WBC. (c) Block structure

Two of the most significant issues in IoT are security and privacy. Due to the IoT devices’ limited CPU, storage, and energy supplies, current security frameworks are still unable to meet the essential security requirements. As a result, the security model for IoT must be distributed and adapted to resource constraints [4]. Blockchain is a decentralized encryption system that can be used for a wide range of purposes. Owing to the high computation time and poor scalability, in its current state, blockchain is unsuitable for IoT. We suggest a blockchain that uses a window block (WBC) that slides through the blockchain. The window starts with a single block and grows to multiple blocks depending on the hash block size. When making a new block, the blocks in the WBC are used in the architecture that has been proposed; by each hashing the BC inside the window size (WS), the block hash is created. The series of similar previous WBC used to execute and update hash functions is affected by the structure of the window. For a constant complexity of mining, the WBC has a communication complexity of O (n), where n is the count of WBC used in the hash update [5].

Resources like computational capability, energy sources, and memory are all limited in IoT devices. As a result, traditional security algorithms are unsuitable for IoT. A window blockchain that reduces memory overhead and limits communication complexity to meet the needs of a resource-constrained IoT system in the space overhead is reduced by storing only a portion of the blockchain in the IoT unit, as specified by the WS, and keeping the entire blockchain in the private cloud. Using a complexity level around 1 and 5 and omitting the Merkle tree reduces computational workload. The block hash is produced using the attributes of n blocks within the window, which increases protection. The preceding (n − 1) blocks and the window size details are required for a fake miner to mine a block. The window represents a linked list sequence of data that are contiguous or adjacent to one another so the best way can imagine this is maybe an array of characters or an array of integer value and slap of window some subset of this array whatever question we have trying to optimize giving the solution in slid the window over which is find the best part of the solution [6, 7].

Deep learning is an ML process originating from artificial neural network. The network is adjusted to thinking about as variables connected via weighted path. Supervised (SL) or unsupervised (USL) learning group of association inside the network to reach the desired group of output [8]. The learning is carried forward by using labeled and unlabeled sources from supervised or unsupervised deep learning techniques followed by additional compromise of the weights among every pair of neurons. Several IoT-based devices produced a huge number of data DL methods that activate the deep linking of the IoT smart environment [9].

Which is a unified protocol that allows IoT-based application, and device will permit transfer from one to another casually without user intervention. Deep learning LSTM has many benefits; it has many disadvantages when dealing with large datasets. This necessitates the use of a large number of memory cells, which increases computational complexity. This type of problem can also lead to computational complexity. To reduce this issue, you’ll need a computationally model for predicting the various types of visible and invisible IoT attacks. To meet the above requirements, a more developed, quick, reliable, and accurate model is needed. The current study aims to establish new hybrid algorithms for whale algorithm in LSTM networks [10].

The first layer of IoT network simulation is built on IP addresses. In both normal and malicious scenarios, a second layer data gathering unit has been added to collect packets. And in the third layer, various attributes were retrieved from the compressed data and utilized to train the proposed DL model to anticipate threats [11]. Finally, the whale-integrated LSTM networks were used to forecast attackers as one of five primary forms of common threats: MIM, DDoS, Dos, data leakage, and spoofing, and the system attack forecast as to whether the node is malicious or not, the sort of attack that happened, the Mac address of the devices under assault, and the measures that should be taken [12] Fig. 3.

Fig. 3

Proposed model integrated WLSTM

Contribution of research work as follows:

• The WBC model for the Internet of things is designed to give privacy between the minimum of infrastructure devices.

• On the infrastructure-simulated devices, efficiency and security of the new WBC model were evaluated.

• When using large datasets, reducing the computational complexity needs a more efficient and highly accurate model, so developed the new hybrid algorithm by integrating the whale algorithms in the LSTM network.

• The prediction of unknown threats is used to tackle the computation complexity in large networks.

  Table 1 Survey on smart infrastructure security

2 Literature Survey

See Table 1.

3 Methodology

3.1 WBC Smart Infrastructure

In the framework of a smart infrastructure environment, an experimental IoT system is implemented with WBC. The smart infrastructure IoT system smart home testbed is depicted in Fig. 4. Cameras, electrical devices an Arduino, a Wi-Fi ESP8266 component, and a gateway computer hardware are all included in the design. An ambient street light sensor, hazardous proximity sensor, temperature sensor, fire sensor, pressure sensor, humidity sensor, and sound sensor, gas sensor, are used to sense the environmental parameters. A person entering and leaving a smart building is detected using directional microphones. The following are the functions of smart infrastructure.

Fig. 4

Smart infrastructure WBC

1. 1.

   Relay 1: Throughout the day, when there are persons inside the smart building and also the environmental street light will be less than the threshold value, the smart building is locked.

2. 2.

   Relay 2: Whenever individuals are located within the building and also the temperature exceeds a threshold value, the door is locked.

3. 3.

   Whenever a fire or gas leak is detected, the beep sounds an alarm.

4. 4.

   When a sound reaches and no one is within the smart building, the light illuminates to identify burglary.

5. 5.

   The sensor module (ACS712) detects the present and transforms it to a reference voltage that is relevant to the situation (0 and 5 V). The voltage sensor (ZMPT101B) detects voltages ranging from 0 to 1000 V air conditioning. The smart infrastructure energy consumption is determined to use the voltage and current sensor values.

6. 6.

   The smart building state is processed using UNIX time obtained from the remote system.

7. 7.

   The TCP/IP protocol is used to transport sensor information from the network edge to the gateway via the ESP8266.

8. 8.

   The detected key is protected to use the AES method with PBKDF2 and safely saved using WBC at the system level.

3.2 WBC Parameters

The hash function in a bitcoin system is set to 1 MB, and then a block is mined every 10 min [22]. WBC uses a configurable key length with a maximum of 1 megabyte. If another block size is greater than 1 MB, then data is split into many blocks. The data block is determined by the following formula:

$${\text{Size}}\,{\text{of}}\,{\text{the}}\,{\text{Block}} = \left( {\left( {{\text{Hash}}\,{\text{Encryption}} + {\text{Data}}} \right){\text{Samples}} + {\text{Size}}\,{\text{overhead}}} \right)$$

(1)

When the hash is used encrypted inefficiency is the amount of time it takes to data encryption in bytes. The amount of data examples is represented by tests, while the number of blocks utilized to represent a block is represented by block overhead. The block capacity is restricted to <1 MB in this case. The complexity of determining a target value is determined by the following factors [24].

$${\text{Complexity}} = \frac{{{\text{Complexity}}\_{\text{level}}\_{\text{Target}}}}{{{\text{Current}}\_{\text{target}}}}$$

(2)

The time it takes to create a block is determined by using the following formula.

$${\text{Avg}}\,{\text{Length}}\,{\text{of}}\,{\text{Time}} = \frac{{\left( {{\text{Complexity}}2^{\text{Bits }} } \right)}}{{{\text{Hash}}\,{\text{Speed}}}}$$

(3)

The difficulty level of mining is represented by bits, while the hash rate is indeed the amount of hashes miners calculate every sec.

3.3 The Infrastructure Device Security is Model as Follows

At step S1, a traditional data cryptography algorithm E receives a security password P as input and produces a signature K public randomly. Using public-key cryptography K-Public and device data D, this encryption method produces a data stored encryption data D at phase S2. The smart contract stores its public key K-public using varied access permissions also for miners. Figure 4, as inputs, where n is the window frame size. Otherwise, the m miners start solving a POW puzzle by multiplying the nonce number by one for each repetition, unless the BlockID of the block header already exists inside any block within the ledger. If the riddle is resolved and also the miners validate it, e WBC algorithm 1 is successful.

Append-L is seen in algorithm1 (WBC), that also takes a current block’s, previous block hash, BlockID, timestamp, edge ID Parts, nonce, MinerID, smart contract hash, and encrypt data, as well as block hash, Edge ID, timestamp, bits, nonce, previous block hash, Block ID, Miner ID, smart contract hash, and encrypt the data. Encrypted as input, data from the previous (n − 1) blocks, where n is the window’s size. If the BlockID of the current layer already exists in any chain in the ledger, the process crashes; else, the m miners start solving a POW problem by adding the nonce amount using every additional iteration. Because an attacker does not specify the window size, computing hashes for all potential window block sizes is required to carry out the attack effectively. As a result, the computation time rises to

$$t_c = \,\text{O} (n_t \times tn_t ) = \,\text{O} (n^2 2^b )$$

(4)

Let information be the combination of blacklist such as timestamp, Merkle tree, and encrypted data. The present block to be processed is represented by B_curr, with data is comprised of the concatenated of block attributes such as BlockID. Every nonce of the current block is represented by current, just as it is by N is then used to calculate the block hash of the current block H below Eq. (5).

$$H_{curr} = h\left( {\sum_{i = 1}^{n - 1} {B_{l - i} + \left[ {B_{curr} + N_{curr} } \right]} } \right)$$

(5)

3.4 Deep Learning with IoT Security Model

The algorithm is used to simulate humpback whale hunting behavior, four devices using a spiral to simulate the attacking process and for correct search agent. Encircling the prey, using the bubble-net attacking (BNA) approach, and seeking the prey are the three phases of the mathematical model. LSTM has many benefits; it has many disadvantages when dealing with large datasets. This necessitates the use of a large number of memory cells, which increases computational complexity. This type of problem can also lead to computational complexity. To reduce this issue, you’ll need a computationally model for predicting the various types of visible and invisible IoT attacks. To meet the above requirements, a more developed, quick, reliable, and accurate model is needed. The current study aims to establish new hybrid algorithms for LSTM networks [13,14,15,16]. The whale optimization algorithm is a new schema optimization technique that mimics humpback whale intelligence bubble-net fishing activity. It is an easy, powerful, and predator probabilistic optimization algorithm that can avoid local optima and find the global optimal answer. The whales begin by encircling their prey with spiral-shaped bubbles that extend down to 12 feet below the surface. And they swim back up to catch and capture their prey, which can be mathematically interpreted by updating old approaches rather than picking the best by random selection of new solutions. It differs from other optimization algorithms in that it only requires the adjustment of two parameters. This number of criteria allows for a seamless transition between the extraction and exploration processes [17] Fig. 5.

$$X\left( {t + 1} \right) = {\text{Dl}}.{\text{ebl}}.\cos \left( {2\pi l} \right) + X*\left( t \right)$$

(6)

Fig. 5

Proposed WILS training and testing model

D in the latest millennium is the gap between both the new role and the modified position b is constant which varies from the 0 to 1. X(t + l) is the most advantageous position in the present circumstances. The weights of the LSTM network are optimized using metaheuristic algorithms, and the validity of the model is referred to as the fitness function. Input bias and weights are determined for each iteration. These amounts are then fed into the LSTM network that calculates fitness. If the fitness value is equivalent to the threshold, the iteration will either come to a halt or continue. Whale optimization has a slower convergence speed than most other metaheuristic algorithms, but it takes less time to optimize and increases time consumption [18,19,20].

4 Results and Discussions

4.1 WBC Experiment Results

The experiment was carried out on an Intel Core i7 personal computer with a Windows 10(8th generation) operating system, 16 GB of RAM, and an Arduino Uno with digital and analog pins to which cameras are connected serves as end devices. Sensors are connected to the 3.3 V ports of Arduino, whereas switches are connected to 5 V. The sensor connections are linked to the Arduino’s input pin first, Vcc (3.3 V) second, then GND third. The Arduino Uno’s Tx and Rx are wired to the ESP8266’s Serial port. The AT instructions on the ESP8266 are used to connect with both the TCP/IP interface. The ESP8266 is attached to a shared entry point and connects with the computer through it. It requires about 14 s as an Arduino Board to charge up, confirm the ESP8266's availability, and establish a fresh TCP/IP communication with the router [21,22,23]. The above experiment is also conducted on Arduino Due [24] as edge device and Raspberry Pi as the blockchain miner.

Documents of various sizes are generated as a result of the impact of the threshold value. A 1 megabytes file represents a single block, while a ten-gigabyte file represents ten blocks. The time that it takes to generate a data file hash cost is computed. The rise in window size does have a sufficient level on the hash time complexity of a WBC, as shown in Fig. 6. As regards the window size, overall hash. Processing time is a continuously rising function. F(x) = b + mx Where f(x) is the time it takes to compute a hash, m is the window size, and b = x, the slope is the constant. Figure 6 shows this. The slopes are hash computation time (HCT) is b = 0:01,641 and m = 0:0052. As a result, the moment it takes to compute a hash can be stated as the Fig. 6 HCT = windowsize + 0.01641 × 0.0052. Therefore, WBC increases blockchain security with a negligible increase in computational complexity. WBC needs a mechanism to store the sequence of window sizes used for each block generation. Our analysis of WBC is carried out with fixed window size. The window size can be chosen based on: (1) our application; (2) requirement of time taken to mine a block; and (3) the required security level. WBC takes less amount of time to mine a block with small window size.

Fig. 6

Analysis of hash computation time versus WBC size

As a result, WBC improves blockchain security while increasing powerful cryptographic only a little. The size of a window might be constant or adjustable. The blockchain is now more secure and harder to compromise with changing window sizes. A dynamic window size calculates the hash of each incoming block in the blockchain using varying window sizes [25]. A changing WBC also requires a technique to keep track of the series of evaluation metrics utilized by each block generation. The WBC analysis has been done with set window size. The length of a window can be determined by our software, the time taken to mine a block, and the level of security needed. With a tiny sliding window, WBC takes less time to mining a block.

Changes in the network traffic, this number may change. The confirmation times for both the WBC with PC, WBC using bitcoin blockchain on Raspberry Pi, PC with a single miner are 92.27 s, 1098.80 s, and 9.16 s, respectively, with a 20-bits difficulty Fig. 7. For Arduino ATmega-based boards, the highest data capture frequency is around 10,000 times a second (nano, mini, and mega, UNO). Since a result, for fast real-time IoT applications, size of window 10–20 MB is preferred, because it has a hash computational cost of 0.066 and 0.126 s, accordingly.

Fig. 7

Time taken for validation

4.2 WLSTM Simulation Results

The experiment was carried out on an Intel Core i7 personal computer with a Windows 10(8th generation) operating system, 16GB of RAM, and a graphics card. The OMNET++IoT API was used to construct a real-time scenario, and the threat model was generated using Python programming. TensorFlow version 1.3.5 was used to run the proposed deep learning system. Pandas is a data analysis and features extraction tool used the dataset NSLKDD-41, CIDDS-001, UNSWNB15 attributes with a single sticker. The proposed Fig. 9 accuracy is found to be 99% accurate and stable whenever the iterations are optimized to 50. Moreover, between training and testing verification, the root means square error is smaller than 0.0001. The suggested model’s training and testing accuracy vary from 98.5% to 99%, with RAMSE errors ranging from 0.001 to 0.004. The suggested model’s efficiency shows Fig. 8 comparable characteristics when tested using real-time metrics, demonstrating it can predict various.

Fig. 8

Proposed model prediction attack analysis

Fig. 9

Proposed model prediction and dataset analysis

UNSW-NB15-49 elements with one classification results, 56,000 examples of regular traffic, and 119,341 cases of attacked traffics were used for learning while the testing process consisted of 37,000 instances of traffic flow and 45,332 occurrences of attack traffic, NSLKDD-41 elements with one label attributes Fig. 9.To back up previous studies, the setup was used to record and collect roughly three months of regular and assault data packets. Python API has been established to insert the many sorts of IoT network attacks generated to collect the malicious data from the configuration. In a nutshell, 45 days of regular data and 45 days of malicious activity were logged as separate occurrences and saved in log files. It is subsequently utilized to categories the data.

5 Conclusion

IoT device resources like computing requirements, sources of energy, and memory are all limited. Traditional security techniques are unsuitable for IoT. Developed a WBC that reduces memory cost and limits computation complexity to satisfy the requirements of a resource-constrained IoT network only a fraction of the blockchain is kept in the IoT device, as indicated by the window size, while the complete optimized blockchain is kept in the hybrid network. That uses a difficulty scale of 1–5 while omitting the Merkle tree to minimize processing time. The properties of n blocks in the windows are used to build a block size of the hash which improves security. A fraudulent miner will need the previous (n − 1) blocks as well as the window size data to construct a block. Deep learning model was presented using WILS system. A large number of the dataset were gathered using a real-time scenario using OMNET++IoT plugins, and a Python API is created to insert various malicious activity through networks. The proposed model’s output has been tested and related to other deep learning utilizing benchmark datasets such as CIDDC-001, UNSWN15, and KDD datasets, as well as actual datasets. In all of the tests, the proposed whale optimized in LSTM outperformed other algorithms by 99% in terms of effectiveness, precision, and recall when distinguishing malicious activity in an IoT system and detecting unknown attacks. Based on performance results. In future work, the influence of a varying WBC can be studied, to fit the IoT environment, new consensus methods can be devised. Moreover, the energy consumption of the blockchain can be investigated in order to acquire a deeper understanding of the energy supply required by an IoT device. Whale algorithm is a new form of swarm intelligence algorithm (SIA); the next step is to integrate LSTM in SIA refine the algorithm so that it can be used in more resolve issues in IoT devices with more constraints.