The IoT is vulnerable to network attacks, and Intrusion Detection Systems (IDS) can provide high attack detection accuracy and are easily installed in IoT Servers. However, IDS are seldom evaluated in operational conditions which are seriously impaired by attack overload. Thus a Local Area Network testbed is used to evaluate the impact of UDP Flood Attacks on an IoT Server, whose first line of defence is an accurate IDS. We show that attacks overload the multi-core Server and paralyze its IDS. Thus a mitigation scheme that detects attacks rapidly, and drops packets within milli-seconds after the attack begins, is proposed and experimentally evaluated.

翻译：物联网易受网络攻击，入侵检测系统（IDS）能够提供高精度的攻击检测能力，且易于部署在物联网服务器中。然而，IDS通常未在易受攻击过载严重影响的实际运行条件下进行评估。为此，本研究利用局域网测试床评估UDP洪水攻击对物联网服务器的影响——该服务器的首道防线即为精准的IDS。研究表明，攻击会导致多核服务器过载并使其IDS瘫痪。因此，本文提出一种新型缓解方案，该方案能快速检测攻击，并在攻击开始后数毫秒内丢弃数据包，并通过实验验证了其有效性。