Ensemble-Based Online Machine Learning Algorithms for Network Intrusion Detection Systems Using Streaming Data

Martindale, Nathan; Ismail, Muhammad; Talbert, Douglas A.

doi:10.3390/info11060315

Cited by 29 publications

(10 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Dealing with this particularity is somewhat more critical for forecasting with machine learning algorithms, because of the well-known importance of large data samples for their training. Approaches referred to under the term "online learning" (see, e.g., Martindale et al, 2020) could partly serve toward this important direction and could, thus, be investigated in this endeavor. Such approaches do not require a static dataset.…”

Section: Massive Multi-site Datasets and Large-scale Benchmarkingmentioning

confidence: 99%

A review of machine learning concepts and methods for addressing challenges in probabilistic hydrological post-processing and forecasting

Papacharalampous

Tyralis

2022

Front. Water

View full text Add to dashboard Cite

Probabilistic forecasting is receiving growing attention nowadays in a variety of applied fields, including hydrology. Several machine learning concepts and methods are notably relevant toward addressing the major challenges of formalizing and optimizing probabilistic forecasting implementations, as well as the equally important challenge of identifying the most useful ones among these implementations. Nonetheless, practically-oriented reviews focusing on such concepts and methods, and on how these can be effectively exploited in the above-outlined essential endeavor, are currently missing from the probabilistic hydrological forecasting literature. This absence holds despite the pronounced intensification in the research efforts for benefitting from machine learning in this same literature. It also holds despite the substantial relevant progress that has recently emerged, especially in the field of probabilistic hydrological post-processing, which traditionally provides the hydrologists with probabilistic hydrological forecasting implementations. Herein, we aim to fill this specific gap. In our review, we emphasize key ideas and information that can lead to effective popularizations, as such an emphasis can support successful future implementations and further scientific developments. In the same forward-looking direction, we identify open research questions and propose ideas to be explored in the future.

show abstract

Section: Massive Multi-site Datasets and Large-scale Benchmarkingmentioning

confidence: 99%

A review of machine learning concepts and methods for addressing challenges in probabilistic hydrological post-processing and forecasting

Papacharalampous

Tyralis

2022

Front. Water

View full text Add to dashboard Cite

show abstract

“…Martindale et al [21] proposed an approach for detecting intrusions in IoTs by exploring the performance and runtime trade-offs of a set of several online individual algorithms, as well as a few homogeneous and heterogeneous ensemble approaches. The massive online analysis (MOA) framework was used for implementing their approach.…”

Section: Related Workmentioning

confidence: 99%

An Online Ensemble Learning Model for Detecting Attacks in Wireless Sensor Networks

Tabbaa¹,

Ifzarne²,

Hafidi³

2022

Preprint

View full text Add to dashboard Cite

In today's modern world, the usage of technology is unavoidable and the rapid advances in the Internet and communication fields have resulted to expand the Wireless Sensor Network (WSN) technology. A huge number of sensing devices collect and/or generate numerous sensory data throughout time for a wide range of fields and applications. However, WSN has been proven to be vulnerable to security breaches, the harsh and unattended deployment of these networks, combined with their constrained resources and the volume of data generated introduce a major security concern. WSN applications are extremely critical, it is essential to build reliable solutions that involve fast and continuous mechanisms for online data stream analysis enabling the detection of attacks and intrusions. In this context, our aim is to develop an intelligent, efficient, and updatable intrusion detection system by applying an important machine learning concept known as ensemble learning in order to improve detection performance. Although ensemble models have been proven to be useful in offline learning, they have received less attention in streaming applications. In this paper, we examine the application of different homogeneous and heterogeneous online ensembles in sensory data analysis, on a specialized wireless sensor network-detection system (WSN-DS) dataset in order to classify four types of attacks: Blackhole attack, Grayhole, Flooding, and Scheduling among normal network traffic. Among the proposed novel online ensembles, both the heterogeneous ensemble consisting of an Adaptive Random Forest (ARF) combined with the Hoeffding Adaptive Tree (HAT) algorithm and the homogeneous ensemble HAT made up of 10 models achieved higher detection rates of 96.84% and 97.2 %, respectively. The above models are efficient and effective in dealing with concept drift, while taking into account the resource constraints of WSNs.

show abstract

“…Da mesma forma, a facilidade de atualizac ¸ão de modelos também continua a ser negligenciada na maior parte dos NIDS. N. Martindale et al [Martindale et al 2020] propôs uma abordagem de detecc ¸ão de intrusão por aprendizagem de fluxo para baixar os custos computacionais da atualizac ¸ão do modelo. No entanto, os autores não abordam a questão da rotulac ¸ão dos eventos, e assumindo que o rótulo do tráfego de rede pode ser facilmente solicitado quando necessário.…”

Section: Trabalhos Relacionadosunclassified

Atualização de Modelo baseado em Aumento de Dados e Transferência de Aprendizagem para Detecção de Intrusão em Redes

Horchulhack

Viegas²,

Santin³

et al. 2022

Anais Do XXII Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2022)

View full text Add to dashboard Cite

Neste artigo apresentamos uma abordagem para atualização do modelo de aprendizagem de máquina para detecção de intrusão. Inicialmente, o tráfego de rede é aumentando por uma Redes Adversárias Generativas (GANs). Depois, as atualizações de modelos são realizadas por meio de Transferência de Aprendizagem sobre o conjunto de dados aumentado. O número de instâncias a ser rotuladas e os custos computacionais das atualizações do modelo são diminuídas significativa na proposta. A experimentação foi feita num conjunto de dados de 8TB (tráfego de rede de 1 ano), demonstrando a ineficiência dos trabalhos da literatura para detectar mudanças de comportamento no tráfego na rede. No caso do nosso modelo a taxa de falsos positivos diminuiu em até 18,1% quando atualizações periódicas são realizadas. As atualizações contemplaram somente 2,3% das instâncias, com uma diminuição de 14% no custo computacional.

show abstract

Ensemble-Based Online Machine Learning Algorithms for Network Intrusion Detection Systems Using Streaming Data

Cited by 29 publications

References 25 publications

A review of machine learning concepts and methods for addressing challenges in probabilistic hydrological post-processing and forecasting

A review of machine learning concepts and methods for addressing challenges in probabilistic hydrological post-processing and forecasting

An Online Ensemble Learning Model for Detecting Attacks in Wireless Sensor Networks

Atualização de Modelo baseado em Aumento de Dados e Transferência de Aprendizagem para Detecção de Intrusão em Redes

Contact Info

Product

Resources

About