期刊
JOURNAL OF SUPERCOMPUTING
卷 77, 期 4, 页码 3571-3593出版社
SPRINGER
DOI: 10.1007/s11227-020-03410-y
关键词
Intrusion detection; Artificial neural networks; Cyber security
类别
资金
- Computer Emergency Response Team at Razi University (Razi CERT) [97P101]
The paper introduces a multi-architectural modular deep neural network model to reduce the false-positive rate of anomaly-based intrusion detection systems. Experimental results demonstrate improvements in the detection of network attacks, with accuracy as high as 100% for network-level attacks compared to related works.
The exponential growth of computer networks and the adoption of new network-based technologies have made computer security an important challenge. With the emergence of new internet-connected devices, the attack surface is increasing for cyber intruders. Many intrusion detection systems attempt to detect known attacks using signatures in network traffic. In recent years, researchers used several machine learning techniques to detect network attacks without relying on these signatures. These techniques generally suffer from a high false-positive rate which is not acceptable for an industry-ready intrusion detection product. In this paper, we propose a multi-architectural modular deep neural network model to decrease the false-positive rate of anomaly-based intrusion detection systems. Our model consists of a feed-forward module, a stack of restricted Boltzmann machine module, and two recurrent modules, the output weights of these modules are fed to an aggregator module to produce the answer of the model. The experiments are performed using CSE-CIC-IDS2018 dataset, and final models can be used in an IDS for generating alerts or preventing new attacks. The experimental results show improvement in the detection of some types of network attacks with accuracy as high as 100% for network-level attacks compared to related works.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据