Generating a benchmark cyber multi-step attacks dataset for intrusion detection-Reference-Cited by-同舟云学术

Generating a benchmark cyber multi-step attacks dataset for intrusion detection

Published:2022-07-21 Issue:3 Volume:43 Page:3679-3694
ISSN:1064-1246
Container-title:Journal of Intelligent & Fuzzy Systems
language:
Short-container-title:IFS

Author:

Almseidin Mohammad¹,Al-Sawwa Jamil²,Alkasassbeh Mouhammd³

Affiliation:

1. Computer Science Department, Aqaba University of Technology, Aqaba, Jordan

2. Computer Science Department, Tafila Technical University, Tafila, Jordan

3. Computer Science Department, Princess Sumaya University for Technology, Amman, Jordan

Abstract

Nowadays, with the rapid increase in the number of applications and networks, the number of cyber multi-step attacks has been increasing exponentially. Thus, the need for a reliable and acceptable Intrusion Detection System (IDS) solution is becoming urgent to protect the networks and devices. However, implementing a robust IDS needs a reliable and up-to-date dataset in order to capture the behaviors of the new types of attacks especially a multi-step attack. In this paper, a new benchmark Multi-Step Cyber-Attack Dataset (MSCAD) is introduced. MSCAD includes two multi-step scenarios; the first scenario is a password cracking attack, and the second attack scenario is a volume-based Distributed Denial of Service (DDoS) attack. The MSCAD was assessed in two manners; firstly, the MSCAD was used to train IDS. Then, the performance of IDS was evaluated in terms of G-mean and Area Under Curve (AUC). Secondly, the MSCAD was compared with other free open-source and public datasets based on the latest keys criteria of a dataset evaluation framework. The results show that IDS-based MSCAD achieved the best performance with G-mean 0.83 and obtained good accuracy to detect the attacks. Besides, the MSCAD successfully passing twelve keys criteria.

Publisher

IOS Press

Subject

Artificial Intelligence,General Engineering,Statistics and Probability

Reference27 articles.

1. Fuzzy automaton as a detection mechanism for the multi-step attack;Mohammad Almseidin;International Journal on Advanced Science, Engineering and Information Technology

2. A multi-step attack recognition and prediction method via mining attacks conversion frequencies;Da-peng;Int J Wirel Microw Technol (IJWMT),2012

3. Shigen Shen , Keli Hu , Longjun Huang , Hongjie Li , Risheng Han and Qiying Cao , Quantal response equilibrium-based strategies for intrusion detection in wsns, , Mobile Information Systems 2015 (2015).

4. Yanxue Zhang , Dongmei Zhao and Jinxing Liu , The application of baum-welch algorithm in multistep attack, , The Scientific World Journal 2014 (2014).

5. Detection of iot-botnet attacks using fuzzy rule interpolation;Mouhammd Al-Kasassbeh;Journal of Intelligent & Fuzzy Systems,2020

Cited by 12 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Sliding mode control for nonlinear semi-Markov jump systems with cyber attacks via fuzzy logic;Journal of Intelligent & Fuzzy Systems;2024-04-18

2. Fusion of linear and non-linear dimensionality reduction techniques for feature reduction in LSTM-based Intrusion Detection System;Applied Soft Computing;2024-03

3. Spark-based multi-verse optimizer as wrapper features selection algorithm for phishing attack challenge;Cluster Computing;2024-02-12

4. Intelligent Under Sampling Based Ensemble Techniques for Cyber-Physical Systems in Smart Cities;Intelligent Systems Reference Library;2024

5. DT-ARO: Decision Tree-Based Artificial Rabbits Optimization to Mitigate IoT Botnet Exploitation;Journal of Network and Systems Management;2023-12-07