Е-Публикации
Технически университет - София

Abstract: growing range of data sets have been created in recent years; these are used by platforms and software applications and kept in remote access repositories. Datasets are therefore more susceptible to harmful attacks. As a result, network security in data transmission is becoming a more important area of study. One well-known method for safeguarding computer systems is the deployment of intrusion detection systems. This study proposes an artificial intelligence based method for data analysis-based anomaly detection. Methods based on machine learning and rules are mixed together. The right rules are created via a genetic algorithm. Relevant features are extracted using principal component analysis with the goal of enhancing performance. The KDD Cup 1999 dataset is used to empirically validate the suggested procedure, satisfying the criterion of using appropriate data. Using the well-known benchmark dataset, the suggested approach is used to identify and examine four different kinds of attacks: Neptune, Ipsweep, Pod, and Teardrop. During the machine learning phase, the data is categorized into categories of attacks and normal behavior after the features set during the training phase are tested. For the purpose of data analysis, the input data is divided into training and testing sets for an artificial neural network. The first 80% of the data are used to train the neural network, and the remaining 20% are used for testing. The estimated accuracy improves with the number of epochs and is higher for training data and lower for validation test data, according to experimental results. Consequently, the trained model can be retained and used to detect discrepancies. The learnt model is used to the system to compute new input parameters that are not used during training or validation.

References

1. K. Khan, A. Mehmood, S. Khan, M. A. Khan, Z. Iqbal and W. K. Mashwani, A survey on intrusion detection and prevention in wireless ad-hoc networks, J. Syst. Archit., vol. 105, May 2020.
2. S. Otoum, et al. A Comparative Study of AI-Based Intrusion Detection Techniques in Critical Infrastructures. ACM Transactions on Internet Technology (TOIT) 21, 2020: 1-22.
3. Thudumu, S., Branch, P., Jin, J. et al. A comprehensive survey of anomaly detection techniques for high dimensional big data. J Big Data 7, 42 (2020). https://doi.org/10.1186/s40537-020-00320-x
4. M. Mazini, B. Shirazi and I. Mahdavi, Anomaly network-based intrusion detection system using a reliable hybrid artificial bee colony and AdaBoost algorithms, J. King Saud Univ. Comput. Inf. Sci., vol. 31, no. 4, pp. 541-553, Oct. 2019.
5. Z. K. Maseer, R. Yusof, N. Bahaman, S. A. Mostafa and C. F. M. Foozy, Benchmarking of machine learning for anomaly based intrusion detection systems in the CICIDS2017 dataset, IEEE access, vol. 9, pp. 22351-22370, 2021.
6. M. Verkerken, D'hooge, L., Wauters, T. et al. Towards Model Generalization for Intrusion Detection: Unsupervised Machine Learning Techniques. J Netw Syst Manage 30, 12, 2022. https://doi.org/10.1007/s10922-021-09615-7
7. R. Chapaneri, Shah, S. A. Comprehensive Survey of Machine Learning-Based Network Intrusion Detection. In: Satapathy, S., Bhateja, V., Das, S. (eds) Smart Intelligent Computing and Applications. Smart Innovation, Systems and Technologies, vol 104. 2019. Springer, Singapore. https://doi.org/10.1007/978-981-13-1921-1_35
8. I.H. Sarker, Machine Learning: Algorithms, Real-World Applications and Research Directions. SN COMPUT. SCI. 2, 160, 2021. https://doi.org/10.1007/s42979-021-00592-x
9. T. Eldos, M. Siddiqui and A. Kanan, On the KDD'99 dataset: Statistical analysis for feature selection, J. Data Min. Knowl., vol. 3, no. 3, pp. 88-90, 2012.

Issue