EFS-DNN: An Ensemble Feature Selection-Based Deep Learning Approach to Network Intrusion Detection System

Wang, Zehong; Liu, Jian Hua; Sun, Leyao

doi:10.1155/2022/2693948

Cited by 13 publications

(9 citation statements)

References 46 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Additionally, a convolutional neural network (CNN) is employed for classifying the NSL.KDD dataset into normal and attack categories. In [73] the process employs an ensemble feature selection-based DNN to efficiently identify anomalous behaviors in network traffic data. It combines a light gradient boosting machine LightGBM for feature selection and a DNN integrated with batch normalization and embedding techniques as the classifier.…”

Section: B Features Selection Optimizedmentioning

confidence: 99%

Exploring Lightweight Deep Learning Techniques for Intrusion Detection Systems in IoT Networks: A Survey

Hind Ali abdul Hassan

2024

jes

View full text Add to dashboard Cite

The proliferation of Internet users has coincided with a commensurate increase in the amount of very important, sensitive, and private information being transferred across the Internet. Malicious actors are increasingly targeting networks to breach them and obtain illegal access to critical information since this trend has revealed holes in security systems. In addition to endangering the privacy of the data concerned, these breaches disrupt the smooth functioning of systems. Therefore, in light of these dangers, intrusion detection systems (IDSs) are now an essential part of any cybersecurity program. The goal of these systems is to detect and report any suspicious activity by constantly monitoring and analyzing network traffic. Numerous review articles have investigated various methods for network intrusion detection. To improve detection accuracy while keeping computing efficiency high, this survey study investigates lightweight deep learning techniques for intrusion detection systems. These techniques include pruning, quantization, clustering, and collaborative optimization. This study analyzes five different types of new real-world traffic datasets (i.e., CSE-CIC- IDS2018, NSL-KDD, Bot-IoT, ToN IoT Network, and UNSW-NB15) and evaluates the performance of several machine learning and deep learning techniques. This survey provides metrics for measuring the accuracy of intrusion detection across various systems, which may be used to assess performance.

show abstract

Section: B Features Selection Optimizedmentioning

confidence: 99%

Exploring Lightweight Deep Learning Techniques for Intrusion Detection Systems in IoT Networks: A Survey

Hind Ali abdul Hassan

2024

jes

View full text Add to dashboard Cite

show abstract

“…Among various preprocessing methods, feature selection and feature extraction have been the focus of many studies. Wang Z et al [13] proposed a new deep neural network called Ensemble Feature Selection-based Deep Neural Network (EFS-DNN) for detecting attacks in large-scale network traffic data. Sakiyama A et al .…”

Section: Related Workmentioning

confidence: 99%

A uniform network flow feature aggregation method based on parallel LSTM

Shou,

Yin,

Luo

2023

Third International Conference on Advanced Algorithms and Signal Image Processing (AASIP 2023)

View full text Add to dashboard Cite

As the Internet continues to evolve, network attacks are becoming increasingly complex, and malicious traffic is taking on more diverse forms. A key factor in the correct identification of whether traffic is benign or malicious is the method used to extract traffic features. While researchers have investigated the extraction of robust features from raw traffic data, most have focused solely on individual packets and have not considered the semantic representations of bytes in the same location across different packets. In this paper, we propose a novel method for extracting aligned byte stream features, which involves splitting packets into several parts to extract aligned bytes. Based on this method, we propose a deep-level network-based flow feature aggregation approach for detecting malicious traffic, which uses multiple LSTMs to aggregate flow features and employs deep-level networks for detection. Extensive experimental evaluations demonstrate the effectiveness of the proposed method.

show abstract

“…Individual algorithms are referred to as first-level algorithms, while the combiner is referred to as a second-level algorithm or meta-classifier. Jafarian et al [16], Kaur [17], Jain and Kaur [21], Rashid et al [29], Wang et al [30] demonstrate that stacking generates a promising intrusion detection capability; however, most of the proposed stacking procedures do not consider LR as a second-level algorithm, as suggested by [32]. Alternatively, combiner strategies, such as majority voting [22] and weighted majority voting [25,28] may be utilized as anomaly detectors.…”

Section: Related Workmentioning

confidence: 99%

“…Furthermore, it is possible to construct homogeneous ensembles in which an ensemble procedure is built upon a single (e.g., the same type) algorithm. Kaur [17] compares three different adaptive boosting (AB) [33] families of algorithms for anomaly-based IDS, while the rest of proposed approaches utilize tree-based ensemble learning, such as RF [18,20,24,26,27], LightGBM [18,23,30], and XGBoost [18,19,27].…”

Section: Related Workmentioning

confidence: 99%

“…In addition, previous research indicates that feature selectors using the wrapper technique are taken into account. A wrapper-based feature selector evaluates a specific machine learning algorithm to search optimal feature subset [17,18,21,30]. Examining the above-mentioned methods for anomaly detectors, our study fills a gap by examining hybrid ensemble and PSO-based feature selection, both of which are underexplored in the existing literature.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

PSO-Driven Feature Selection and Hybrid Ensemble for Network Anomaly Detection

Louk

Tama

2022

BDCC

View full text Add to dashboard Cite

As a system capable of monitoring and evaluating illegitimate network access, an intrusion detection system (IDS) profoundly impacts information security research. Since machine learning techniques constitute the backbone of IDS, it has been challenging to develop an accurate detection mechanism. This study aims to enhance the detection performance of IDS by using a particle swarm optimization (PSO)-driven feature selection approach and hybrid ensemble. Specifically, the final feature subsets derived from different IDS datasets, i.e., NSL-KDD, UNSW-NB15, and CICIDS-2017, are trained using a hybrid ensemble, comprising two well-known ensemble learners, i.e., gradient boosting machine (GBM) and bootstrap aggregation (bagging). Instead of training GBM with individual ensemble learning, we train GBM on a subsample of each intrusion dataset and combine the final class prediction using majority voting. Our proposed scheme led to pivotal refinements over existing baselines, such as TSE-IDS, voting ensembles, weighted majority voting, and other individual ensemble-based IDS such as LightGBM.

show abstract

EFS-DNN: An Ensemble Feature Selection-Based Deep Learning Approach to Network Intrusion Detection System

Cited by 13 publications

References 46 publications

Exploring Lightweight Deep Learning Techniques for Intrusion Detection Systems in IoT Networks: A Survey

Exploring Lightweight Deep Learning Techniques for Intrusion Detection Systems in IoT Networks: A Survey

A uniform network flow feature aggregation method based on parallel LSTM

PSO-Driven Feature Selection and Hybrid Ensemble for Network Anomaly Detection

Contact Info

Product

Resources

About