Ruqaya Abdulhasan Abed, Ekhlas Kadhum Hamza, Amjad J. Humaidi
{"title":"A modified CNN-IDS model for enhancing the efficacy of intrusion detection system","authors":"Ruqaya Abdulhasan Abed, Ekhlas Kadhum Hamza, Amjad J. Humaidi","doi":"10.1016/j.measen.2024.101299","DOIUrl":null,"url":null,"abstract":"<div><p>As the security of computer networks in enterprises worldwide is dependent on the proper functioning of intrusion detection systems (IDSs) and intrusion prevention systems (IPSs), this effectiveness of both of them is of utmost priority. Leveraging diverse techniques, these network security systems are created to keep the reliability, the availability, and the integrity of the organizational networks safe. One plus point of using ML in intrusion detection system (IDS) is that it has successfully weeded out all the IDS attacks with a high degree of accuracy. In contrast, such systems may be believed to operate to their least competent levels when supersized data spaces have to be dealt with. In the process to solve this, application of feature selection techniques will play the crucial role to ignore non-relevant features which do not impact the issue of classification much. One more thing to keep in mind is that the ML-based IDSs often have problems with high false alarms and percentage accuracy because of the imbalanced training sets. The undertaking of this paper involves a through the analysis of the UNSW-NB15 intrusion detection data set as upon which our models will be tested and trained. We utilize two feature selection approaches: the PCA method, which is denoted as PCA, and the SVD method, called SVD. Furthermore, we categorize the datasets using these methods— Ridge Regression (RR), Stochastic Gradient Descent, and Convolutional Neural Network (CNN)-- on the transformed feature space. What is the most widely used for, is that it deals with both, binary and multiclass classification. The result measure that PCA and SVD are succeeded in getting better performance of IDS than others with enhancing the accuracy of classification models. More specifically, the RR classifier's precise was outstanding for the binary classification problem experiencing a rise in the accuracy from 98.13 % to 99.85 %. This shows the critical role of feature selection approaches and is also demonstrates the modeling capabilities of RR, SGD, and CNN classifiers and stands out as a solution to intrusion detection.</p></div>","PeriodicalId":34311,"journal":{"name":"Measurement Sensors","volume":"35 ","pages":"Article 101299"},"PeriodicalIF":0.0000,"publicationDate":"2024-09-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S2665917424002757/pdfft?md5=e75508d91d0b1c1b4d96b962aa0b4cfa&pid=1-s2.0-S2665917424002757-main.pdf","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Measurement Sensors","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2665917424002757","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"Engineering","Score":null,"Total":0}
引用次数: 0
Abstract
As the security of computer networks in enterprises worldwide is dependent on the proper functioning of intrusion detection systems (IDSs) and intrusion prevention systems (IPSs), this effectiveness of both of them is of utmost priority. Leveraging diverse techniques, these network security systems are created to keep the reliability, the availability, and the integrity of the organizational networks safe. One plus point of using ML in intrusion detection system (IDS) is that it has successfully weeded out all the IDS attacks with a high degree of accuracy. In contrast, such systems may be believed to operate to their least competent levels when supersized data spaces have to be dealt with. In the process to solve this, application of feature selection techniques will play the crucial role to ignore non-relevant features which do not impact the issue of classification much. One more thing to keep in mind is that the ML-based IDSs often have problems with high false alarms and percentage accuracy because of the imbalanced training sets. The undertaking of this paper involves a through the analysis of the UNSW-NB15 intrusion detection data set as upon which our models will be tested and trained. We utilize two feature selection approaches: the PCA method, which is denoted as PCA, and the SVD method, called SVD. Furthermore, we categorize the datasets using these methods— Ridge Regression (RR), Stochastic Gradient Descent, and Convolutional Neural Network (CNN)-- on the transformed feature space. What is the most widely used for, is that it deals with both, binary and multiclass classification. The result measure that PCA and SVD are succeeded in getting better performance of IDS than others with enhancing the accuracy of classification models. More specifically, the RR classifier's precise was outstanding for the binary classification problem experiencing a rise in the accuracy from 98.13 % to 99.85 %. This shows the critical role of feature selection approaches and is also demonstrates the modeling capabilities of RR, SGD, and CNN classifiers and stands out as a solution to intrusion detection.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
