A Tsetlin Machine-driven Intrusion Detection System for Next-Generation IoMT Security

Generative AI & LLMs
Published: arXiv: 2604.03205v1
Authors

Rahul Jaiswal Per-Arne Andersen Linga Reddy Cenkeramaddi Lei Jiao Ole-Christoffer Granmo

View on arXiv Download PDF View Graph

Abstract

The rapid adoption of the Internet of Medical Things (IoMT) is transforming healthcare by enabling seamless connectivity among medical devices, systems, and services. However, it also introduces serious cybersecurity and patient safety concerns as attackers increasingly exploit new methods and emerging vulnerabilities to infiltrate IoMT networks. This paper proposes a novel Tsetlin Machine (TM)-based Intrusion Detection System (IDS) for detecting a wide range of cyberattacks targeting IoMT networks. The TM is a rule-based and interpretable machine learning (ML) approach that models attack patterns using propositional logic. Extensive experiments conducted on the CICIoMT-2024 dataset, which includes multiple IoMT protocols and cyberattack types, demonstrate that the proposed TM-based IDS outperforms traditional ML classifiers. The proposed model achieves an accuracy of 99.5\% in binary classification and 90.7\% in multi-class classification, surpassing existing state-of-the-art approaches. Moreover, to enhance model trust and interpretability, the proposed TM-based model presents class-wise vote scores and clause activation heatmaps, providing clear insights into the most influential clauses and the dominant class contributing to the final model decision.

Paper Summary

Problem
The rapid growth of the Internet of Medical Things (IoMT) has transformed healthcare by enabling seamless connectivity among medical devices, systems, and services. However, this has also introduced serious cybersecurity and patient safety concerns as attackers increasingly exploit new methods and emerging vulnerabilities to infiltrate IoMT networks. The main problem is detecting diverse cyberattacks targeting IoMT networks to safeguard patient privacy and safety.
Key Innovation
The proposed solution is a novel Tsetlin Machine (TM)-based Intrusion Detection System (IDS) for detecting cyberattacks in IoMT environments. The TM is a rule-based and interpretable machine learning approach that models attack patterns using propositional logic. This makes the model transparent, explainable, and trustworthy.
Practical Impact
The proposed IDS can provide an effective and interpretable solution for strengthening the security of IoMT networks/devices. By detecting cyberattacks in real-time, the model can help prevent patient data breaches, protect patient safety, and ensure the integrity of medical devices and systems. This is particularly important in the healthcare sector, where patient data is highly sensitive and private.
Analogy / Intuitive Explanation
Imagine a network of medical devices and systems as a complex web of interconnected threads. Each thread represents a potential vulnerability or attack vector. The proposed IDS uses the Tsetlin Machine approach to analyze these threads, identifying patterns and anomalies that may indicate a cyberattack. By doing so, the model can help prevent the thread from being pulled apart, protecting the integrity of the network and ensuring patient safety.
Paper Information
Categories:
cs.CR cs.LG
Published Date:

arXiv ID:

2604.03205v1

Quick Actions
Back to Home