<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">kaz44</journal-id><journal-title-group><journal-title xml:lang="ru">Вестник Университета Шакарима. Серия технические науки</journal-title><trans-title-group xml:lang="en"><trans-title>Bulletin of Shakarim University. Technical Sciences</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2788-7995</issn><issn pub-type="epub">3006-0524</issn><publisher><publisher-name>«Шәкәрім университеті» КеАҚ</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.53360/2788-7995-2025-3(19)-14</article-id><article-id custom-type="elpub" pub-id-type="custom">kaz44-2040</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>АВТОМАТИЗАЦИЯ И ИНФОРМАЦИОННЫЕ ТЕХНОЛОГИИ (ОРИГИНАЛЬНАЯ СТАТЬЯ)</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>AUTOMATION AND INFORMATION TECHNOLOGY (ORIGINAL ARTICLE)</subject></subj-group></article-categories><title-group><article-title>ИНТЕЛЛЕКТУАЛЬНЫЙ МЕТОД ПОСТОЯННОГО МОНИТОРИНГА БЕЗОПАСНОСТИ В СЕТЯХ IEEE 802.15.4 НА ОСНОВЕ АДАПТИВНОГО АНАЛИЗА АНОМАЛИЙ</article-title><trans-title-group xml:lang="en"><trans-title>INTELLIGENT METHOD OF CONTINUOUS SECURITY MONITORING IN IEEE 802.15.4 NETWORKS BASED ON ADAPTIVE ANOMALY ANALYSIS</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0009-0009-4820-6132</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Бажаев</surname><given-names>Н. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Bazhayev</surname><given-names>N.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Нуржан Аманкулулы Бажаев – постдокторант</p><p> 010000, Республика Казахстан, г. Астана, улица К. Сатпаева, 2 </p><p>010000, Республика Казахстан, г. Астана, проспект Мангилик Ел, 55 В</p></bio><bio xml:lang="en"><p>Nurzhan Bazhayev – postdoctoral fellow</p><p>010000, Republic of Kazakhstan, Satbayev Street, Astana</p><p>010000, Republic of Kazakhstan, Astana, Mangilik El Avenue, 55 В</p></bio><email xlink:type="simple">nurzhan_nfs@hotmail.com</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0001-6006-4813</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Шайханова</surname><given-names>А. К.</given-names></name><name name-style="western" xml:lang="en"><surname>Shaikhanova</surname><given-names>A.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Айгуль Кайрулаевна Шайханова – PhD, профессор кафедры «Информационная безопасность»</p><p>010000, Республика Казахстан, г. Астана, улица К. Сатпаева, 2</p></bio><bio xml:lang="en"><p>Aigul Shaikhanova – PhD, Professor of the Information Security Department</p><p>010000, Republic of Kazakhstan, Satbayev Street, Astana</p></bio><email xlink:type="simple">shaikhanova_ak@enu.kz</email><xref ref-type="aff" rid="aff-2"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0003-0291-4685</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Сатыбалдина</surname><given-names>Д. Ж.</given-names></name><name name-style="western" xml:lang="en"><surname>Satybaldina</surname><given-names>D.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Дина Жагыпаровна Сатыбалдина – кандидат физико-математических наук, ассоциированный профессор</p><p>010000, Республика Казахстан, г. Астана, улица К. Сатпаева, 2</p></bio><bio xml:lang="en"><p>Dina Satybaldina – Candidate of Physical and Mathematical Sciences, Associate Professor</p><p>010000, Republic of Kazakhstan, Satbayev Street, Astana</p></bio><email xlink:type="simple">dinasaty@gmail.com</email><xref ref-type="aff" rid="aff-2"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0009-0004-2567-173X</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Бакенова</surname><given-names>К. С.</given-names></name><name name-style="western" xml:lang="en"><surname>Bakenova</surname><given-names>K.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Камила Сериковна Бакенова – докторант кафедры «Информационная безопасность»</p><p>010000, Республика Казахстан, г. Астана, улица К. Сатпаева, 2 </p></bio><bio xml:lang="en"><p>Kamila Bakenova – PhD student of the Information Security Department</p><p>010000, Republic of Kazakhstan, Satbayev Street, Astana</p></bio><email xlink:type="simple">bakenova.ks@enu.kz</email><xref ref-type="aff" rid="aff-2"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru">Евразийский национальный университет им. Л.Н. Гумилева; &#13;
АО «Государственная техническая служба»<country>Казахстан</country></aff><aff xml:lang="en">L.N. Gumilyov Eurasian National University;&#13;
State Technical Service JSC<country>Kazakhstan</country></aff></aff-alternatives><aff-alternatives id="aff-2"><aff xml:lang="ru">Евразийский национальный университет им. Л.Н. Гумилева<country>Казахстан</country></aff><aff xml:lang="en">L.N. Gumilyov Eurasian National University<country>Kazakhstan</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2025</year></pub-date><pub-date pub-type="epub"><day>03</day><month>11</month><year>2025</year></pub-date><volume>0</volume><issue>3(19)</issue><fpage>127</fpage><lpage>134</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Бажаев Н.А., Шайханова А.К., Сатыбалдина Д.Ж., Бакенова К.С., 2025</copyright-statement><copyright-year>2025</copyright-year><copyright-holder xml:lang="ru">Бажаев Н.А., Шайханова А.К., Сатыбалдина Д.Ж., Бакенова К.С.</copyright-holder><copyright-holder xml:lang="en">Bazhayev N., Shaikhanova A., Satybaldina D., Bakenova K.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://tech.vestnik.shakarim.kz/jour/article/view/2040">https://tech.vestnik.shakarim.kz/jour/article/view/2040</self-uri><abstract><p>Обеспечение безопасности беспроводных сетей стандарта IEEE 802.15.4 является одной из ключевых задач в развитии Интернета вещей (IoT). Учитывая ограниченные вычислительные ресурсы IoT-устройств, традиционные методы обнаружения атак, основанные на криптографических механизмах и детерминированных порогах, не всегда обеспечивают достаточный уровень защиты. В данной работе предлагается новый метод адаптивного мониторинга сетевого трафика, который сочетает модифицированную Z-оценку с учетом размера выборки и адаптивный Байесовский классификатор с динамической корректировкой вероятности атаки. Экспериментальное тестирование на данных, сгенерированных в среде NS-3, показало, что предложенный метод превосходит традиционные подходы по точности обнаружения атак, снижая коэффициент ложных срабатываний с 10.9% до 3.8%. Гибридная модель обеспечивает 94.7% точности классификации и 91.8% полноты обнаружения атак, что на 6.3% выше, чем у стандартного Байесовского классификатора. Полученные результаты демонстрируют перспективность использования предложенного метода в системах реального времени для мониторинга безопасности IoT-сетей. Разработанный подход позволяет адаптироваться к изменяющейся сетевой среде, снижая влияние случайных флуктуаций, что делает его эффективным решением для защиты сетей с низким энергопотреблением.</p></abstract><trans-abstract xml:lang="en"><p>Securing IEEE 802.15.4 wireless networks is one of the key challenges in the development of the Internet of Things (IoT). Given the limited computational resources of IoT devices, traditional attack detection methods based on cryptographic mechanisms and deterministic thresholds do not always provide a sufficient level of protection. In this paper, we propose a novel method for adaptive network traffic monitoring that combines a modified Z-score with sample size consideration and an adaptive Bayesian classifier with dynamic attack probability adjustment. Experimental testing on data generated in an NS-3 environment shows that the proposed method outperforms traditional approaches in terms of attack detection accuracy, reducing the false positive rate from 10.9% to 3.8%. The hybrid model provides 94.7% classification accuracy and 91.8% attack detection completeness, which is 6.3% higher than the standard Bayesian classifier. The obtained results demonstrate the promising use of the proposed method in real-time systems for monitoring the security of IoT networks. The developed approach allows adapting to the changing network environment, reducing the influence of random fluctuations, which makes it an effective solution for protecting low-power networks.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>Информационная безопасность</kwd><kwd>персональные сети</kwd><kwd>IEEE 802.15.4</kwd><kwd>IoT</kwd><kwd>обнаружение атак</kwd><kwd>Z-оценка</kwd><kwd>Байесовский классификатор</kwd><kwd>машинное обучение</kwd><kwd>сетевой мониторинг</kwd></kwd-group><kwd-group xml:lang="en"><kwd>Information security</kwd><kwd>personal networks</kwd><kwd>IEEE 802.15.4</kwd><kwd>IoT</kwd><kwd>attack detection</kwd><kwd>Z-score</kwd><kwd>Bayesian classifier</kwd><kwd>machine learning</kwd><kwd>network monitoring</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Security and Privacy in the Industrial Internet of Things: Current Standards and Future Challenges / Т. Gebremichael et al // IEEE Access. – 2020. – Vol. 8. – P. 152351-152366.</mixed-citation><mixed-citation xml:lang="en">Security and Privacy in the Industrial Internet of Things: Current Standards and Future Challenges / Т. Gebremichael et al // IEEE Access. – 2020. – Vol. 8. – P. 152351-152366.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Sadikin F. ZigBee IoT Intrusion Detection System: A Hybrid Approach with Rule-based and Machine Learning Anomaly Detection / F. Sadikin, S. Kumar // Proc. of Int. Conf. on Security. – 2020. – P. 57-68.</mixed-citation><mixed-citation xml:lang="en">Sadikin F. ZigBee IoT Intrusion Detection System: A Hybrid Approach with Rule-based and Machine Learning Anomaly Detection / F. Sadikin, S. Kumar // Proc. of Int. Conf. on Security. – 2020. – P. 57-68.</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Choudhary S. Internet of Things: Protocols, Applications and Security Issues / S. Choudhary, G. Meena // Procedia Computer Science. – 2022.</mixed-citation><mixed-citation xml:lang="en">Choudhary S. Internet of Things: Protocols, Applications and Security Issues / S. Choudhary, G. Meena // Procedia Computer Science. – 2022.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Kampourakis V. A systematic literature review on wireless security testbeds in the cyberphysical realm / V. Kampourakis, V. Gkioulos, S. Katsikas // Computers &amp; Security. – 2023. – URL: https://www.sciencedirect.com/science/article/pii/S0167404823002936.</mixed-citation><mixed-citation xml:lang="en">Kampourakis V. A systematic literature review on wireless security testbeds in the cyberphysical realm / V. Kampourakis, V. Gkioulos, S. Katsikas // Computers &amp; Security. – 2023. – URL: https://www.sciencedirect.com/science/article/pii/S0167404823002936.</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Ullah I. A two-level flow-based anomalous activity detection system for IoT networks / I. Ullah, Q.H. Mahmoud // Electronics. – 2020. – Vol. 9, № 3. – URL: https://www.mdpi.com/2079-9292/9/3/530.</mixed-citation><mixed-citation xml:lang="en">Ullah I. A two-level flow-based anomalous activity detection system for IoT networks / I. Ullah, Q.H. Mahmoud // Electronics. – 2020. – Vol. 9, № 3. – URL: https://www.mdpi.com/2079-9292/9/3/530.</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Murugesan K.V.N. Comprehensive Security Analysis and DoS Attack Mitigation in Thread Networks / K.V.N. Murugesan, T. Master // Proc. IEEE WCNC. – 2025. – P. 1-7.</mixed-citation><mixed-citation xml:lang="en">Murugesan K.V.N. Comprehensive Security Analysis and DoS Attack Mitigation in Thread Networks / K.V.N. Murugesan, T. Master // Proc. IEEE WCNC. – 2025. – P. 1-7.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Morillo Fuetala D.G. Detecting targeted interference in the Internet of Things / D.G. Morillo Fuetala. – University College Cork, 2024.</mixed-citation><mixed-citation xml:lang="en">Morillo Fuetala D.G. Detecting targeted interference in the Internet of Things / D.G. Morillo Fuetala. – University College Cork, 2024.</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Aljohani R. AI-Based Intrusion Detection for a Secure Internet of Things (IoT) / R. Aljohani, A. Bushnag, A. Alessa // Journal of Network and Systems Management. – 2024. – Vol. 32. – Art. 56.</mixed-citation><mixed-citation xml:lang="en">Aljohani R. AI-Based Intrusion Detection for a Secure Internet of Things (IoT) / R. Aljohani, A. Bushnag, A. Alessa // Journal of Network and Systems Management. – 2024. – Vol. 32. – Art. 56.</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">A Survey on IoT Ground Sensing Systems for Early Wildfire Detection / C.C. Chan et al // IEEE Access. – 2024. – Vol. 12. – P. 172785-172819.</mixed-citation><mixed-citation xml:lang="en">A Survey on IoT Ground Sensing Systems for Early Wildfire Detection / C.C. Chan et al // IEEE Access. – 2024. – Vol. 12. – P. 172785-172819.</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Kumari T.A. Tachyon: Enhancing stacked models using Bayesian optimization for intrusion detection / T.A. Kumari, S. Mishra // Egyptian Informatics Journal. – 2024. – Vol. 27. – Art. 100520.</mixed-citation><mixed-citation xml:lang="en">Kumari T.A. Tachyon: Enhancing stacked models using Bayesian optimization for intrusion detection / T.A. Kumari, S. Mishra // Egyptian Informatics Journal. – 2024. – Vol. 27. – Art. 100520.</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Khayyat M.M. Improved bacterial foraging optimization with deep learning based anomaly detection in smart cities / M.M. Khayyat // Alexandria Engineering Journal. – 2023. – Vol. 75. – P. 407-417.</mixed-citation><mixed-citation xml:lang="en">Khayyat M.M. Improved bacterial foraging optimization with deep learning based anomaly detection in smart cities / M.M. Khayyat // Alexandria Engineering Journal. – 2023. – Vol. 75. – P. 407-417.</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Sorostinean R. Anomaly Detection in Smart Industrial Machinery Through Hidden Markov Models and Autoencoders / R. Sorostinean, Z. Burghelea, A. Gellert // IEEE Access. – 2024. – P. 1-1.</mixed-citation><mixed-citation xml:lang="en">Sorostinean R. Anomaly Detection in Smart Industrial Machinery Through Hidden Markov Models and Autoencoders / R. Sorostinean, Z. Burghelea, A. Gellert // IEEE Access. – 2024. – P. 1-1.</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">Isong B. Insights into Modern Intrusion Detection Strategies for IoT Ecosystems / B. Isong, O. Kgote, A. Abu-Mahfouz // Electronics. – 2024. – Vol. 13. – Art. 2370.</mixed-citation><mixed-citation xml:lang="en">Isong B. Insights into Modern Intrusion Detection Strategies for IoT Ecosystems / B. Isong, O. Kgote, A. Abu-Mahfouz // Electronics. – 2024. – Vol. 13. – Art. 2370.</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Energy-aware and self-adaptive anomaly detection scheme based on network tomography / W. Wang et al // Information Sciences. – 2013. – Vol. 220. – P. 580-602.</mixed-citation><mixed-citation xml:lang="en">Energy-aware and self-adaptive anomaly detection scheme based on network tomography / W. Wang et al // Information Sciences. – 2013. – Vol. 220. – P. 580-602.</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Identification of Attacks against Wireless Sensor Networks Based on Behaviour Analysis / V. Korzhuk et al // Journal of Wireless and Ubiquitous Computing. – 2019. – Vol. 10, № 2. – P. 1-21.</mixed-citation><mixed-citation xml:lang="en">Identification of Attacks against Wireless Sensor Networks Based on Behaviour Analysis / V. Korzhuk et al // Journal of Wireless and Ubiquitous Computing. – 2019. – Vol. 10, № 2. – P. 1-21.</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
