{"title":"Network Intrusion Detection with XGBoost and Deep Learning Algorithms: An Evaluation Study","authors":"Amr Attia, M. Faezipour, Abdel-shakour Abuzneid","doi":"10.1109/CSCI51800.2020.00031","DOIUrl":null,"url":null,"abstract":"This paper introduces an effective Network Intrusion Detection Systems (NIDS) framework that deploys incremental statistical damping features of the packets along with state-of- the-art machine/deep learning algorithms to detect malicious patterns. A comprehensive evaluation study is conducted between eXtreme Gradient Boosting (XGBoost) and Artificial Neural Networks (ANN) where feature selection and/or feature dimensionality reduction techniques such as Principal Component Analysis (PCA) and Linear Discriminant Analysis (LDA) are also integrated into the models to decrease the system complexity for achieving fast responses. Several experimental runs confirm how powerful machine/deep learning algorithms are for intrusion detection on known attacks when combined with the appropriate features extracted. To investigate unknown attacks, the models were trained on a subset of the attack datasets, while a different set (with a different attack type) was kept aside for testing. The decent results achieved further support the belief that through supervised learning, the model could additionally detect unknown attacks.","PeriodicalId":336929,"journal":{"name":"2020 International Conference on Computational Science and Computational Intelligence (CSCI)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 International Conference on Computational Science and Computational Intelligence (CSCI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSCI51800.2020.00031","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 2
Abstract
This paper introduces an effective Network Intrusion Detection Systems (NIDS) framework that deploys incremental statistical damping features of the packets along with state-of- the-art machine/deep learning algorithms to detect malicious patterns. A comprehensive evaluation study is conducted between eXtreme Gradient Boosting (XGBoost) and Artificial Neural Networks (ANN) where feature selection and/or feature dimensionality reduction techniques such as Principal Component Analysis (PCA) and Linear Discriminant Analysis (LDA) are also integrated into the models to decrease the system complexity for achieving fast responses. Several experimental runs confirm how powerful machine/deep learning algorithms are for intrusion detection on known attacks when combined with the appropriate features extracted. To investigate unknown attacks, the models were trained on a subset of the attack datasets, while a different set (with a different attack type) was kept aside for testing. The decent results achieved further support the belief that through supervised learning, the model could additionally detect unknown attacks.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
