CyberNFTs: Conceptualizing a decentralized and reward-driven intrusion detection system with ML
Synim Selimi, Blerim Rexha, Kamer Vishi
TL;DR
The paper addresses how to realize a decentralized intrusion detection framework by merging Web3 technologies, ML, and a tokenized reward system. It proposes a CIDN where local network traffic is analyzed with ML, results and signatures are stored on a blockchain, and discovery ownership is tracked via CyberNFTs within a publish/subscribe network. Through a proof-of-concept Autonom system, the authors demonstrate end-to-end operation and compare decentralized versus centralized approaches, highlighting both potential benefits and current limitations. The work offers a foundation for decentralized cybersecurity models and identifies key challenges—particularly around blockchain scalability and cross-node model updates—that future research must address to achieve a fully decentralized, scalable IDS ecosystem.
Abstract
The rapid evolution of the Internet, particularly the emergence of Web3, has transformed the ways people interact and share data. Web3, although still not well defined, is thought to be a return to the decentralization of corporations' power over user data. Despite the obsolescence of the idea of building systems to detect and prevent cyber intrusions, this is still a topic of interest. This paper proposes a novel conceptual approach for implementing decentralized collaborative intrusion detection networks (CIDN) through a proof-of-concept. The study employs an analytical and comparative methodology, examining the synergy between cutting-edge Web3 technologies and information security. The proposed model incorporates blockchain concepts, cyber non-fungible token (cyberNFT) rewards, machine learning algorithms, and publish/subscribe architectures. Finally, the paper discusses the strengths and limitations of the proposed system, offering insights into the potential of decentralized cybersecurity models.