Author:
Varzaneh Zahra Asghari,Hosseini Soodeh
Abstract
AbstractIn this paper, an enhanced equilibrium optimization (EO) version named Levy-opposition-equilibrium optimization (LOEO) is proposed to select effective features in network intrusion detection systems (IDSs). The opposition-based learning (OBL) approach is applied by this algorithm to improve the diversity of the population. Also, the Levy flight method is utilized to escape local optima. Then, the binary rendition of the algorithm called BLOEO is employed to feature selection in IDSs. One of the main challenges in IDSs is the high-dimensional feature space, with many irrelevant or redundant features. The BLOEO algorithm is designed to intelligently select the most informative subset of features. The empirical findings on NSL-KDD, UNSW-NB15, and CIC-IDS2017 datasets demonstrate the effectiveness of the BLOEO algorithm. This algorithm has an acceptable ability to effectively reduce the number of data features, maintaining a high intrusion detection accuracy of over 95%. Specifically, on the UNSW-NB15 dataset, BLOEO selected only 10.8 features on average, achieving an accuracy of 97.6% and a precision of 100%.
Publisher
Springer Science and Business Media LLC
Reference63 articles.
1. Kaeo, M. Designing Network Security (Cisco Press, 2004).
2. Kizza, J. M., Kizza, W. & Wheeler. Guide to computer network security (2013).
3. Depren, O., Topallar, M., Anarim, E. & Ciliz, M. K. An intelligent intrusion detection system (IDS) for anomaly and misuse detection in computer networks. Expert Syst. Appl. 29, 713–722 (2005).
4. Borkar, A., Donode, A. & Kumari, A. in 2017 International Conference on Inventive Computing and Informatics (ICICI). 949–953 (IEEE).
5. Ambusaidi, M. A., He, X., Nanda, P. & Tan, Z. Building an intrusion detection system using a filter-based feature selection algorithm. IEEE Trans. Comput. 65, 2986–2998 (2016).