Intrusion detection systems for wireless sensor networks using computational intelligence techniques

IF 3.9 4区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS Cybersecurity Pub Date : 2023-10-03 DOI:10.1186/s42400-023-00161-0

Vaishnavi Sivagaminathan, Manmohan Sharma, Santosh Kumar Henge

{"title":"Intrusion detection systems for wireless sensor networks using computational intelligence techniques","authors":"Vaishnavi Sivagaminathan, Manmohan Sharma, Santosh Kumar Henge","doi":"10.1186/s42400-023-00161-0","DOIUrl":null,"url":null,"abstract":"Abstract Network Intrusion Detection Systems (NIDS) are utilized to find hostile network connections. This can be accomplished by looking at traffic network activity, but it takes a lot of work. The NIDS heavily utilizes approaches for data extraction and machine learning to find anomalies. In terms of feature selection, NIDS is far more effective. This is accurate since anomaly identification uses a number of time-consuming features. Because of this, the feature selection method influences how long it takes to analyze movement patterns and how clear it is. The goal of the study is to provide NIDS with an attribute selection approach. PSO has been used for that purpose. The Network Intrusion Detection System that is being developed will be able to identify any malicious activity in the network or any unusual behavior in the network, allowing the identification of the illegal activities and safeguarding the enormous amounts of confidential data belonging to the customers from being compromised. In the research, datasets were produced utilising both a network infrastructure and a simulation network. Wireshark is used to gather data packets whereas Cisco Packet Tracer is used to build a network in a simulated environment. Additionally, a physical network consisting of six node MCUs connected to a laptop and a mobile hotspot, has been built and communication packets are being recorded using the Wireshark tool. To train several machine learning models, all the datasets that were gathered—created datasets from our own studies as well as some common datasets like NSDL and UNSW acquired from Kaggle—were employed. Additionally, PSO, which is an optimization method, has been used with these ML algorithms for feature selection. In the research, KNN, decision trees, and ANN have all been combined with PSO for a specific case study. And it was found demonstrated the classification methods PSO + ANN outperformed PSO + KNN and PSO + DT in this case study.","PeriodicalId":36402,"journal":{"name":"Cybersecurity","volume":null,"pages":null},"PeriodicalIF":3.9000,"publicationDate":"2023-10-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Cybersecurity","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1186/s42400-023-00161-0","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Abstract Network Intrusion Detection Systems (NIDS) are utilized to find hostile network connections. This can be accomplished by looking at traffic network activity, but it takes a lot of work. The NIDS heavily utilizes approaches for data extraction and machine learning to find anomalies. In terms of feature selection, NIDS is far more effective. This is accurate since anomaly identification uses a number of time-consuming features. Because of this, the feature selection method influences how long it takes to analyze movement patterns and how clear it is. The goal of the study is to provide NIDS with an attribute selection approach. PSO has been used for that purpose. The Network Intrusion Detection System that is being developed will be able to identify any malicious activity in the network or any unusual behavior in the network, allowing the identification of the illegal activities and safeguarding the enormous amounts of confidential data belonging to the customers from being compromised. In the research, datasets were produced utilising both a network infrastructure and a simulation network. Wireshark is used to gather data packets whereas Cisco Packet Tracer is used to build a network in a simulated environment. Additionally, a physical network consisting of six node MCUs connected to a laptop and a mobile hotspot, has been built and communication packets are being recorded using the Wireshark tool. To train several machine learning models, all the datasets that were gathered—created datasets from our own studies as well as some common datasets like NSDL and UNSW acquired from Kaggle—were employed. Additionally, PSO, which is an optimization method, has been used with these ML algorithms for feature selection. In the research, KNN, decision trees, and ANN have all been combined with PSO for a specific case study. And it was found demonstrated the classification methods PSO + ANN outperformed PSO + KNN and PSO + DT in this case study.

Abstract Image

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

基于计算智能技术的无线传感器网络入侵检测系统

摘要网络入侵检测系统(NIDS)用于发现恶意网络连接。这可以通过查看交通网络活动来完成，但这需要大量的工作。NIDS大量利用数据提取和机器学习方法来发现异常。在特征选择方面，NIDS要有效得多。这是准确的，因为异常识别使用了许多耗时的特征。因此，特征选择方法会影响分析运动模式所需的时间和清晰度。本研究的目的是为NIDS提供一种属性选择方法。PSO已被用于这一目的。正在开发的网络入侵检测系统将能够识别网络中的任何恶意活动或网络中的任何异常行为，从而识别非法活动，保护属于客户的大量机密数据不被泄露。在研究中，数据集是利用网络基础设施和模拟网络产生的。Wireshark主要用于采集数据包，而Cisco Packet Tracer主要用于模拟环境下的网络搭建。已搭建由6个节点mcu组成的物理网络，连接笔记本电脑和移动热点，并使用Wireshark工具记录通信报文。为了训练几个机器学习模型，我们使用了收集到的所有数据集——从我们自己的研究中创建的数据集，以及从kaggle获得的一些常见数据集，如NSDL和UNSW。此外，PSO是一种优化方法，已与这些ML算法一起用于特征选择。在研究中，KNN、决策树和人工神经网络都与粒子群算法结合在一起进行了具体的案例研究。在本案例中，发现PSO + ANN分类方法优于PSO + KNN和PSO + DT分类方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊