Machine learning based intrusion detection system: an experimental comparison

Imran Hidayat, Muhammad Zulfiqar Ali, Arshad*

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

40 Citations (Scopus)
433 Downloads (Pure)

Abstract

Recently, networks are moving toward automation and getting more and more intelligent. With the advent of big data and cloud computing technologies, lots and lots of data are being produced on the internet. Every day, petabytes of data are produced from websites, social media sites, or the internet. As more and more data are produced, a continuous threat of network attacks is also growing. An intrusion detection system (IDS) is used to detect such types of attacks in the network. IDS inspects packet headers and data and decides whether the traffic is anomalous or normal based on the contents of the packet. In this research, ML techniques are being used for intrusion detection purposes. Feature selection is also used for efficient and optimal feature selection. The research proposes a hybrid feature selection technique composed of the Pearson correlation coefficient and random forest model. For the machine learning (ML) model, decision tree, AdaBoost, and K-nearesrt neighbor are trained and tested on the TON_IoT dataset. The dataset is new and contains new and recent attack types and features. For deep learning (DL), multilayer perceptron (MLP) and long short-term memory are trained and tested. Evaluation is done on the basis of accuracy, precision, and recall. It is concluded from the results that the decision tree for ML and MLP for DL provides optimal accuracy with fewer false-positive and false-negative rates. It is also concluded from the results that the ML techniques are effective for detecting intrusion in the networks.

Original languageEnglish
Pages (from-to)88-97
Number of pages10
JournalJournal of Computational and Cognitive Engineering
Volume2
Issue number2
Early online date13 Jul 2022
DOIs
Publication statusPublished - 18 May 2023

Keywords

  • MLP
  • LSTM
  • KNN
  • IDS
  • machine learning

ASJC Scopus subject areas

  • Engineering (miscellaneous)
  • Computer Science Applications

Fingerprint

Dive into the research topics of 'Machine learning based intrusion detection system: an experimental comparison'. Together they form a unique fingerprint.

Cite this