Early Detection of Network Intrusions Using a GAN-Based One-Class Classifier

Kim, Taehoon; Pak, Wooguil

doi:10.1109/access.2022.3221400

Cited by 24 publications

(4 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Long Short-Term Memory (LSTM), a specialized Recurrent Neural Network (RNN) variant, is harnessed to capture temporal dependencies within network data, making it well-suited for sequential pattern recognition [10]. Our research demonstrates the superior accuracy of LSTM, reaching 97%, showcasing its efficacy in detecting nuanced and time-dependent network intrusion behaviors.…”

Section: ) Long Short-term Memory (Lstm)mentioning

confidence: 92%

SecureNet: Network Intrusion Detection using Machine Learning and Deep Learning Techniques

Takale,

Patil,

Lonikar

et al. 2024

IJRASET

View full text Add to dashboard Cite

In the ever-evolving landscape of cybersecurity, the need for robust intrusion detection systems has become paramount. This paper introduces a cutting-edge intrusion detection algorithm designed to enhance network security through the integration of advanced machine learning and deep learning methodologies. The proposed algorithm capitalizes on the strengths of both paradigms to achieve a comprehensive and adaptive approach to identifying malicious activities within a network. This research focuses on enhancing network security through the development and evaluation of a novel intrusion detection system leveraging both deep learning and traditional machine learning approaches. Utilizing the NSL-KDD dataset, we employ the Long Short-Term Memory (LSTM) model, a superior version of Recurrent Neural Networks (RNNs), and the K-Nearest Neighbors (KNN) algorithm for binary and multi-class classification of network intrusion anomalies. The LSTM model excels in capturing temporal dependencies, enabling the detection of nuanced sequential patterns, while the KNN algorithm contributes to a comprehensive classification framework. Experimental results demonstrate the effectiveness of the hybrid methodology, showcasing improved accuracy, precision, and recall compared to traditional methods. This research underscores the potential of integrating deep learning and classical machine learning techniques to bolster the capabilities of intrusion detection systems in safeguarding against evolving cyber threats

show abstract

Section: ) Long Short-term Memory (Lstm)mentioning

confidence: 92%

SecureNet: Network Intrusion Detection using Machine Learning and Deep Learning Techniques

Takale,

Patil,

Lonikar

et al. 2024

IJRASET

View full text Add to dashboard Cite

show abstract

“…However, this method is based on specific datasets and has not been further tested and validated, which may not be suitable for real-world scenarios or other datasets. Kim et al [29] proposed a method for early detection of network intrusion using a type of classifier based on Generative Adversarial Networks (GAN). This method takes the packet data as the input feature and judges whether the data packet is malicious traffic through the model, enabling realtime and accurate intrusion detection without the delay time of session termination or collecting a certain number of packets.…”

Section: Related Workmentioning

confidence: 99%

Network Intrusion Detection Based on Feature Image and Deformable Vision Transformer Classification

He,

Zhang,

Zong

et al. 2024

IEEE Access

View full text Add to dashboard Cite

Network intrusion detection technology has always been an indispensable protection mechanism for industrial network security. The rise of new forms of network attacks has resulted in a heightened demand for these technologies. Nevertheless, the current models' effectiveness is subpar. We propose a new Deformable Vision Transformer (DE-VIT) method to address this issue. DE-VIT introduces a new deformable attention mechanism module, where the positions of key-value pairs in the attention mechanism are selected in a data-dependent manner, allowing it to focus on relevant areas, capture more informative features, and avoid excessive memory and computational costs. In addition to using deformable convolutions instead of regular convolutions in embedding layers to enhance the receptive field of patches, a sliding window mechanism is also employed to utilize edge information fully. In Parallel, we use a layered focal loss function to improve classification performance and address data imbalance issues. In summary, DE-VIT reduces computational complexity and achieves better results. We conduct experimental simulations on the public intrusion detection datasets, and the accuracy of the enhanced intrusion detection model surpasses that of the Deep Belief Network with Improved Kernel-Based Extreme Learning (DBN-KELM). It reaches 99.5% and 97.5% on the CIC IDS2017 and UNSW-NB15 datasets, exhibiting an increase of 8.5% and 9.1%, respectively.INDEX TERMS Network intrusion detection, deformable vision transformer, deformable convolution, deformable attention mechanism, vision transformer.

show abstract

“…In order to differentiate between malicious and safe sessions on a network, one-class classifier with the support of GAN [15] A DNN model was suggested for RT-IDS [16]. The needs of a real-time IDS can be met by this paradigm.…”

Section: Literature Surveymentioning

confidence: 99%

“…Records of both innocuous traffic and nine types of assaults (including Fuzzers, analysis, Backdoor, DoS, 160 Exploits, etc.) are The proposed MV-ConvLSTM and other algorithms such as Conv-LSTM [11], SDAE-ELM [14], GAN-DNN-LSTM [15], CNN RSA [10] and CNN-LSTM [18] are developed by Python 3.7.8 for same three intrusion datasets. The evolution metrics like accuracy, precision and recall are evaluated.…”

Section: Unsw-nb15 [25]mentioning

confidence: 99%

Multi-Valued Neutrosophic Convolutional LSTM for Intrusion Detection

2023

IJIES

View full text Add to dashboard Cite

Cyber security is an essential area of study because of the positive effects that networks have on modern society. As it becomes simpler for cybercriminals to launch novel assaults, the scale and complexity of today's networks continue to grow. Therefore, it is crucial to create an efficient instruction detection system (IDS) capable of constantly monitoring network traffic for suspicious activity and issuing alerts as necessary. Several researchers have employed machine learning (ML) and deep learning (DL) techniques to create an effective IDS. Amongst, an effective IDS detection model convolutional neural network (CNN)-long short term memory (LSTM extracts temporal and geographical aspects of network traffic to lower the false alarm rate (FAR) and raise the detection rate (DR). However, the epistemic uncertainty in intrusion data affect the efficiency of CNN-LSTM model. This paper handle uncertainty information by proposing a multivalued neutrosophic convolutional LSTM (MVN-ConvLSTM) which extracts different deep features. MVN-ConvLSTM uses a neutrosophic set (NS) which considers truth (𝑇), indeterminacy (𝐼), and falsity (𝐹) memberships of every features. First, the intrusion features are mapped to NS domain as six sets, positive degree of truth-membership (𝑇 𝐴 ), positive degree of falsity membership (𝐹 𝐴 ), Positive degree of indeterminate towards falsity and indeterminate towards truth membership (𝐼 𝐴 ), negative degree of truth-membership (𝑇 𝐵 ), negative degree of falsity membership (𝐼 𝐵 ), and negative degree of indeterminate towards falsity and indeterminate towards truth membership (𝐼 𝐵 ). Next, an MVN-ConvLSTM is generated with four parallel paths, two of which take input from 𝑇 and two from 𝐼, and a suitable combination of these paths is used to produce the output. The weights of the neural network are updated in four different directions at once using a back propagation approach. The efficiency of MVN-ConvLSTM to handle uncertainty in intrusion dataset is proved by comparing conventional CNN models which provides lower FAR and high DR. Finally, the test results show that the MVN-ConvLSTM achieves accuracy value of 94.63%, 92.84% and 91.84% on three different datasets CIC-IDS2018, WSN-DS and UNSW-NB15.

show abstract

Early Detection of Network Intrusions Using a GAN-Based One-Class Classifier

Cited by 24 publications

References 32 publications

SecureNet: Network Intrusion Detection using Machine Learning and Deep Learning Techniques

SecureNet: Network Intrusion Detection using Machine Learning and Deep Learning Techniques

Network Intrusion Detection Based on Feature Image and Deformable Vision Transformer Classification

Multi-Valued Neutrosophic Convolutional LSTM for Intrusion Detection

Contact Info

Product

Resources

About