|Title||A Comparison of Data Streaming Frameworks for Anomaly Detection in Embedded Systems|
|Publication Type||Conference Paper|
|Year of Publication||2018|
|Authors||Dunne, M., G. Gracioli, and S. Fischmeister|
|Conference Name||International Workshop on Security and Privacy for the Internet-of-Things (IoTSec)|
|Conference Location||Orlando, USA|
As IoT devices are integrated into our daily lives, verification and security become of increasing concern. Using anomaly detection methods, we can identify damaged and compromised devices by examining traces of their activity. Collecting these traces with minimal overhead is a core requirement of any anomaly detection system. We evaluate four publish-subscribe broker systems on their viability for trace collection in the context of IoT devices. Our comparison considers ordering and delivery guarantees, client language support, data structure support, intended use case, and maturity. We run each system on original Raspberry Pis and collect network performance statistics, measuring their capability to collected traces in a resource-constrained embedded systems environment. We conclude with recommendations for designing an anomaly detection system for IoT devices.