Machine Learning for Network Intrusion Detection—A Comparative Study-Reference-Cited by-同舟云学术

Machine Learning for Network Intrusion Detection—A Comparative Study

Published:2023-07-16 Issue:7 Volume:15 Page:243
ISSN:1999-5903
Container-title:Future Internet
language:en
Short-container-title:Future Internet

Author:

Al Lail Mustafa¹^ORCID,Garcia Alejandro¹,Olivo Saul¹

Affiliation:

1. School of Engineering, Texas A&M International University, Laredo, TX 78041, USA

Abstract

Modern society has quickly evolved to utilize communication and data-sharing media with the advent of the internet and electronic technologies. However, these technologies have created new opportunities for attackers to gain access to confidential electronic resources. As a result, data breaches have significantly impacted our society in multiple ways. To mitigate this situation, researchers have developed multiple security countermeasure techniques known as Network Intrusion Detection Systems (NIDS). Despite these techniques, attackers have developed new strategies to gain unauthorized access to resources. In this work, we propose using machine learning (ML) to develop a NIDS system capable of detecting modern attack types with a very high detection rate. To this end, we implement and evaluate several ML algorithms and compare their effectiveness using a state-of-the-art dataset containing modern attack types. The results show that the random forest model outperforms other models, with a detection rate of modern network attacks of 97 percent. This study shows that not only is accurate prediction possible but also a high detection rate of attacks can be achieved. These results indicate that ML has the potential to create very effective NIDS systems.

Funder

Texas A&M International University

National Science Foundation

Publisher

MDPI AG

Subject

Computer Networks and Communications

Link

https://www.mdpi.com/1999-5903/15/7/243/pdf

Reference36 articles.

1. Guide to intrusion detection and prevention systems (IDPS);Scarfone;NIST Spec. Publ.,2007

2. Intrusion detection: A brief history and overview;Kemmerer;Computer,2002

3. Cardoso, L.S. (2007). Network Security: Current Status and Future Directions, IEEE Press.

4. Survey of intrusion detection systems: Techniques, datasets and challenges;Khraisat;Cybersecurity,2019

5. Tavallaee, M., Bagheri, E., Lu, W., and Ghorbani, A.A. (2009, January 8–10). A detailed analysis of the KDD CUP 99 data set. Proceedings of the 2009 IEEE Symposium on Computational Intelligence for Security and Defense Applications, Ottawa, ON, Canada.

Cited by 13 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A study on characterizing energy, latency and security for Intrusion Detection Systems on heterogeneous embedded platforms;Future Generation Computer Systems;2025-01

2. Improving Network Security with Gradient Boosting from KDD Cup Dataset;SN Computer Science;2024-09-13

3. A New Intrusion Detection Model for Using CNN-LSTM with CatBoost for Detecting Known and Innovative Cyberattacks;2024 International Conference on Signal Processing, Computation, Electronics, Power and Telecommunication (IConSCEPT);2024-07-04

4. A Novel Hybrid Feature Selection with Cascaded LSTM: Enhancing Security in IoT Networks;Wireless Communications and Mobile Computing;2024-03-13

5. Intrusion Detection based on clustering with ML algorithm and LIME Insights;2024 International Conference on Integrated Circuits and Communication Systems (ICICACS);2024-02-23