An Intrusion Detection Method based on Fusion Neural Network

Authors

  • Xin Li
  • Hong Huang
  • Guotao Yuan
  • Zhaolian Wang
  • Rui Du

DOI:

https://doi.org/10.54097/fcis.v4i2.10369

Keywords:

Intrusion Detection, Multi-scale 1D Convolution, Bidirectional Long Short-Term Memory Network, Residual Connections

Abstract

Aiming at the problems of class imbalance, insufficient feature learning, weak generalization ability, and representation capability in existing intrusion detection models, we propose a multi-scale feature fusion Intrusion Detection Model (MSFF). This model combines multi-scale one-dimensional convolution and bidirectional long short-term memory (LSTM) networks, and incorporates residual connections with identity mappings to address the problem of network degradation. The multi-scale convolution captures feature representations at different levels, thereby improving the expressive power of the model. The WGAN-GP algorithm is employed to augment the minority samples and balance the dataset. By performing convolution operations and extracting local window features and global features using bidirectional LSTM units, the model effectively captures temporal information and long-term dependencies. Experimental results demonstrate significant performance improvement compared to a single model. The MSFF model achieves an accuracy of 99.50% and 94.73% in binary classification experiments on the NSL-KDD and UNSW-NB15 datasets, respectively, and an accuracy of 99.50% and 83.78% in multi-class classification experiments.

Downloads

Download data is not yet available.

References

Wazirali R. An improved intrusion detection system based on KNN hyperparameter tuning and cross-validation[J]. Arabian Journal for Science and Engineering, 2020, 45(12): 10859-10873.

Liu G, Zhao H, Fan F, et al. An enhanced intrusion detection model based on improved kNN in WSNs[J]. Sensors, 2022, 22 (4): 1407.

Mohammadi M, Rashid T A, Karim S H T, et al. A comprehensive survey and taxonomy of the SVM-based intrusion detection systems[J]. Journal of Network and Computer Applications, 2021, 178: 102983.

Wang H, Gu J, Wang S. An effective intrusion detection framework based on SVM with feature augmentation[J]. Knowledge-Based Systems, 2017, 136: 130-139.

Tabash M, Abd Allah M, Tawfik B. Intrusion detection model using naive bayes and deep learning technique[J]. Int. Arab J. Inf. Technol., 2020, 17(2): 215-224.

Balyan A K, Ahuja S, Lilhore U K, et al. A hybrid intrusion detection model using ega-pso and improved random forest method[J]. Sensors, 2022, 22(16): 5986.

Anton S D D, Sinha S, Schotten H D. Anomaly-based intrusion detection in industrial data with SVM and random forests[C]//2019 International conference on software, telecommunications and computer networks (SoftCOM). IEEE, 2019: 1-6.

Shu Hao, Wang Chen, Shi Yan. Intrusion Detection Based on BiLSTM and Attention Mechanism[J]. Computer Engineering and Design, 2020, 41(11): 3042-3046.

Li Haitao, Wang Ruimin, Dong Weiyu, Jiang Liehui. A Semi-Supervised Network Traffic Anomaly Detection Method based on GRU[J]. Computer Science, 2023, 50(03): 380-390.Kumar J, Goomer R, Singh A K. Long short term memory recurrent neural network (LSTM-RNN) based workload forecasting model for cloud datacenters[J]. Procedia Computer Science, 2018, 125: 676-682.

Yu X, Li T, Hu A. Time-series Network Anomaly Detection Based on Behaviour Characteristics[C]. In 2020 IEEE 6th International Conference on Computer and Communications (ICCC). Chengdu, China: IEEE, 2020: 568-572.

Khan M A. HCRNNIDS: hybrid convolutional recurrent neural network-based network intrusion detection system[J]. Processes, 2021, 9(5): 834.

Rodda S, Erothi U S R. Class imbalance problem in the network intrusion detection systems[C]//2016 international conference on electrical, electronics, and optimization techniques (ICEEOT). Ieee, 2016: 2685-2688.

Zhang H, Huang L, Wu C Q, et al. An effective convolutional neural network based on SMOTE and Gaussian mixture model for intrusion detection in imbalanced dataset[J]. Computer Networks, 2020, 177: 107315.

Jiang K, Wang W, Wang A, et al. Network intrusion detection combined hybrid sampling with deep hierarchical network[J]. IEEE access, 2020, 8: 32464-32476.

Toupas P, Chamou D, Giannoutakis K M, et al. An intrusion detection system for multi-class classification based on deep neural networks[C]//2019 18th IEEE International Conference on Machine Learning And Applications (ICMLA). IEEE, 2019: 1253-1258.

Al-Turaiki I, Altwaijry N. A convolutional neural network for improved anomaly-based network intrusion detection[J]. Big Data, 2021, 9(3): 233-252.

Shu D, Leslie N O, Kamhoua C A, et al. Generative adversarial attacks against intrusion detection systems using active learning [C]// Proceedings of the 2nd ACM workshop on wireless security and machine learning. 2020: 1-6.

Chen J, Wu D, Zhao Y, et al. Fooling intrusion detection systems using adversarially autoencoder[J]. Digital Communications and Networks, 2021, 7(3): 453-460.

Yin Chuanlong. Research on Network Anomaly Detection Technology based on Deep Learning [D]. Information Engineering University of Strategic Support Force, 2018.

Dong Weiyu, Li Haitao, Wang Ruimin, Ren Huajuan, Sun Xuekai. Network Traffic Anomaly Detection Model based on Stacked Convolutional Attention[J]. Computer Engineering, 2022, 48(09): 12-19.

Downloads

Published

26-06-2023

Issue

Vol. 4 No. 2 (2023)

Section

Articles

License

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

How to Cite

Li, X., Huang, H., Yuan, G., Wang, Z., & Du, R. (2023). An Intrusion Detection Method based on Fusion Neural Network. Frontiers in Computing and Intelligent Systems, 4(2), 124-130. https://doi.org/10.54097/fcis.v4i2.10369
Crossref
Scopus
Google Scholar
Europe PMC