Generating a benchmark cyber multi-step attacks dataset for intrusion detection-Reference-Cited by-同舟云学术

Generating a benchmark cyber multi-step attacks dataset for intrusion detection

Published:2022-07-21 Issue:3 Volume:43 Page:3679-3694
ISSN:1064-1246
Container-title:Journal of Intelligent & Fuzzy Systems
language:
Short-container-title:IFS

Author:

Almseidin Mohammad¹,Al-Sawwa Jamil²,Alkasassbeh Mouhammd³

Affiliation:

1. Computer Science Department, Aqaba University of Technology, Aqaba, Jordan

2. Computer Science Department, Tafila Technical University, Tafila, Jordan

3. Computer Science Department, Princess Sumaya University for Technology, Amman, Jordan

Abstract

Nowadays, with the rapid increase in the number of applications and networks, the number of cyber multi-step attacks has been increasing exponentially. Thus, the need for a reliable and acceptable Intrusion Detection System (IDS) solution is becoming urgent to protect the networks and devices. However, implementing a robust IDS needs a reliable and up-to-date dataset in order to capture the behaviors of the new types of attacks especially a multi-step attack. In this paper, a new benchmark Multi-Step Cyber-Attack Dataset (MSCAD) is introduced. MSCAD includes two multi-step scenarios; the first scenario is a password cracking attack, and the second attack scenario is a volume-based Distributed Denial of Service (DDoS) attack. The MSCAD was assessed in two manners; firstly, the MSCAD was used to train IDS. Then, the performance of IDS was evaluated in terms of G-mean and Area Under Curve (AUC). Secondly, the MSCAD was compared with other free open-source and public datasets based on the latest keys criteria of a dataset evaluation framework. The results show that IDS-based MSCAD achieved the best performance with G-mean 0.83 and obtained good accuracy to detect the attacks. Besides, the MSCAD successfully passing twelve keys criteria.

Publisher

IOS Press

Subject

Artificial Intelligence,General Engineering,Statistics and Probability

Reference27 articles.

1. Fuzzy automaton as a detection mechanism for the multi-step attack;Mohammad Almseidin;International Journal on Advanced Science, Engineering and Information Technology

2. A multi-step attack recognition and prediction method via mining attacks conversion frequencies;Da-peng;Int J Wirel Microw Technol (IJWMT),2012

3. Shigen Shen , Keli Hu , Longjun Huang , Hongjie Li , Risheng Han and Qiying Cao , Quantal response equilibrium-based strategies for intrusion detection in wsns, , Mobile Information Systems 2015 (2015).

4. Yanxue Zhang , Dongmei Zhao and Jinxing Liu , The application of baum-welch algorithm in multistep attack, , The Scientific World Journal 2014 (2014).

5. Detection of iot-botnet attacks using fuzzy rule interpolation;Mouhammd Al-Kasassbeh;Journal of Intelligent & Fuzzy Systems,2020

Cited by 8 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. DT-ARO: Decision Tree-Based Artificial Rabbits Optimization to Mitigate IoT Botnet Exploitation;Journal of Network and Systems Management;2023-12-07

2. Pythagorean Fuzzy Sets-based VIKOR and TOPSIS-based multi-criteria decision-making model for mitigating resource deletion attacks in WSNs;Journal of Intelligent & Fuzzy Systems;2023-06-01

3. Towards Intelligent Attack Detection Using DNA Computing;ACM Transactions on Multimedia Computing, Communications, and Applications;2023-02-24

4. Attention-based RNN architecture for detecting multi-step cyber-attack using PSO metaheuristic;2023 International Conference on Electrical, Computer and Communication Engineering (ECCE);2023-02-23

5. Rule-based Intrusion Detection System using Logical Analysis of Data;2023 International Conference on Intelligent Data Communication Technologies and Internet of Things (IDCIoT);2023-01-05