Multi Level Deep Learning Model for Network Anomaly Detection

Authors

  • Maythem S. Derweesh Department of Computer Science, College of Science, Mustansiriyah University, Baghdad, Iraq
  • Sundos A. Hameed Alazawi Department of Computer Science, College of Science, Mustansiriyah University, Baghdad, Iraq
  • Anwar H. Al-Saleh Department of Computer Science, College of Science, Mustansiriyah University, Baghdad, Iraq

DOI:

https://doi.org/10.29304/jqcsm.2023.15.41346

Keywords:

Anomaly detection, Machine Learning, Deep Learning, cybersecurity

Abstract

The increasing use of internet-based solutions and services in private and corporate sectors has resulted in a significant increase in personal internet involvement. This shift, concurrently exposed a heightened susceptibility to potential vulnerabilities, given the ability of malicious actors to exploit external networks, network services, or corporate infrastructures utilized for personal purposes. In recent times, there has been considerable interest in harnessing deep learning methodologies for enhancing cybersecurity, owing to their utilization of sophisticated learning algorithms for addressing pertinent online security challenges. Machine Learning (ML) and Deep Learning (DL) paradigms have been extensively applied across diverse dimensions of cybersecurity, encompassing tasks such as vulnerability assessment, malware classification, spam detection, and spoofing identification.

In this paper, for hierarchical intrusion detection is proposed a novel multi-stage approach, The proposed system comprises two distinct classification modalities: multi-class classification and binary classification, contingent upon the nature of the attack within the dataset. the KDD99 dataset was leveraged to assess the classification performance of the proposed model. Both classification approaches involve main preprocessing steps, such as feature selection, feature normalization, building a Convolutional Neural Network (CNN) classifier apply on KDD99 dataset, deploying the CNN classifier for anomaly detection.

Downloads

Download data is not yet available.

References

Chen, L., et al. Zyell-nctu nettraffic-1.0: A large-scale dataset for real-world network anomaly detection. in 2021 IEEE International Conference on Consumer Electronics-Taiwan (ICCE-TW). 2021. IEEE.

Fernandes, G., et al., A comprehensive survey on network anomaly detection. Telecommunication Systems, 2019. 70: p. 447-489.

Bhattacharyya, D.K. and J.K. Kalita, Network anomaly detection: A machine learning perspective. 2013: Crc Press.

hashim, h.b., Challenges and Security Vulnerabilities to Impact on Database Systems. Al-Mustansiriyah Journal of Science, 2018. 29(2): p. 117-125.

Almulla, K., Cyber-attack detection in network traffic using machine learning. 2022.

Ren, X., W. Jiao, and D. Zhou, Intrusion detection model of weighted navie bayes based on particle swarm optimization algorithm. Computer Engineering and Applications, 2016. 52(7): p. 122-126.

Sahu, S.K., et al., An SVM-based ensemble approach for intrusion detection. International Journal of Information Technology and Web Engineering (IJITWE), 2019. 14(1): p. 66-84.

Ahmim, A., et al. A novel hierarchical intrusion detection system based on decision tree and rules-based models. in 2019 15th International Conference on Distributed Computing in Sensor Systems (DCOSS). 2019. IEEE.

Ioannou, C. and V. Vassiliou. An intrusion detection system for constrained WSN and IoT nodes based on binary logistic regression. in Proceedings of the 21st ACM International Conference on Modeling, Analysis and Simulation of Wireless and Mobile Systems. 2018.

Mishra, S., et al., Swarm intelligence in anomaly detection systems: an overview. International Journal of Computers and Applications, 2021. 43(2): p. 109-118.

Rana, S., Anomaly Detection in Network Traffic using Machine Learning and Deep Learning Techniques. Turkish Journal of Computer and Mathematics Education (TURCOMAT), 2019. 10(2): p. 1063-1067.

Khan, W. and M. Haroon, An unsupervised deep learning ensemble model for anomaly detection in static attributed social networks. International Journal of Cognitive Computing in Engineering, 2022. 3: p. 153-160.

Haqi Al-Tai, M., B.M. Nema, and A. Al-Sherbaz, Deep Learning for Fake News Detection: Literature Review. Al-Mustansiriyah Journal of Science, 2023. 34(2): p. 70-81.

Khan, A.R., et al., Deep learning for intrusion detection and security of Internet of things (IoT): current analysis, challenges, and possible solutions. Security and Communication Networks, 2022. 2022.

Xiao, Y., et al., An intrusion detection model based on feature reduction and convolutional neural networks. IEEE Access, 2019. 7: p. 42210-42219.

Yang, H. and F. Wang, Wireless network intrusion detection based on improved convolutional neural network. Ieee Access, 2019. 7: p. 64366-64374.

Lin, P., K. Ye, and C.-Z. Xu. Dynamic network anomaly detection system by using deep learning techniques. in Cloud Computing–CLOUD 2019: 12th International Conference, Held as Part of the Services Conference Federation, SCF 2019, San Diego, CA, USA, June 25–30, 2019, Proceedings 12. 2019. Springer.

Karatas, G., O. Demir, and O.K. Sahingoz, Increasing the performance of machine learning-based IDSs on an imbalanced and up-to-date dataset. IEEE access, 2020. 8: p. 32150-32162.

Ferrag, M.A., et al., Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study. Journal of Information Security and Applications, 2020. 50: p. 102419.

Hu, Z., et al., A novel wireless network intrusion detection method based on adaptive synthetic sampling and an improved convolutional neural network. IEEE Access, 2020. 8: p. 195741-195751.

Jiang, K., et al., Network intrusion detection combined hybrid sampling with deep hierarchical network. IEEE access, 2020. 8: p. 32464-32476.

Jiang, F., et al., Deep learning based multi-channel intelligent attack detection for data security. IEEE transactions on Sustainable Computing, 2018. 5(2): p. 204-212.

Malik, J., et al., Hybrid deep learning: An efficient reconnaissance and surveillance detection mechanism in SDN. IEEE Access, 2020. 8: p. 134695-134706.

Kim, J., et al., CNN-based network intrusion detection against denial-of-service attacks. Electronics, 2020. 9(6): p. 916.

Mezina, A., R. Burget, and C.M. Travieso-González, Network anomaly detection with temporal convolutional network and U-Net model. IEEE Access, 2021. 9: p. 143608-143622.

Imrana, Y., et al., A bidirectional LSTM deep learning approach for intrusion detection. Expert Systems with Applications, 2021. 185: p. 115524.

Laghrissi, F., et al., Intrusion detection systems using long short-term memory (LSTM). Journal of Big Data, 2021. 8(1): p. 65.

Kumar, S., S. Gupta, and S. Arora, Research trends in network-based intrusion detection systems: A review. IEEE Access, 2021. 9: p. 157761-157779.

Aldhyani, T.H. and H. Alkahtani, Attacks to automatous vehicles: A deep learning algorithm for cybersecurity. Sensors, 2022. 22(1): p. 360.

Hou, T., et al., A Marine Hydrographic Station Networks Intrusion Detection Method Based on LCVAE and CNN-BiLSTM. Journal of Marine Science and Engineering, 2023. 11(1): p. 221.

Song, J., et al., CSK-CNN: Network Intrusion Detection Model Based on Two-Layer Convolution Neural Network for Handling Imbalanced Dataset. Information, 2023. 14(2): p. 130.

Van, N.T. and T.N. Thinh. An anomaly-based network intrusion detection system using deep learning. in 2017 international conference on system science and engineering (ICSSE). 2017. IEEE.

Ferrag, M.A., et al., Rdtids: Rules and decision tree-based intrusion detection system for internet-of-things networks. Future internet, 2020. 12(3): p. 44.

Mahmood, H.A., Network Intrusion Detection System (NIDS) in Cloud Environment based on Hidden Naïve Bayes Multiclass Classifier. Al-Mustansiriyah Journal of Science, 2018. 28(2): p. 134 - 142.

Damasevicius, R., et al., LITNET-2020: An annotated real-world network flow dataset for network intrusion detection. Electronics, 2020. 9(5): p. 800.

Labonne, M., Anomaly-based network intrusion detection using machine learning. 2020, Institut polytechnique de Paris.

Li, R., et al., GTF: An Adaptive Network Anomaly Detection Method at the Network Edge. Security and Communication Networks, 2021. 2021: p. 1-12.

Downloads

Published

2024-01-14

How to Cite

S. Derweesh, M., A. Hameed Alazawi, S., & H. Al-Saleh, A. (2024). Multi Level Deep Learning Model for Network Anomaly Detection. Journal of Al-Qadisiyah for Computer Science and Mathematics, 15(4), Comp. 8–19. https://doi.org/10.29304/jqcsm.2023.15.41346

Issue

Section

Computer Articles