A Content-Based Deep Intrusion Detection System

01/14/2020
by   Mahdi Soltani, et al.
0

By growing the number of Internet users and the prevalence of web applications, we have to deal with very complex software and applications in the network. This results in an increasing number of new vulnerabilities in the systems, which consequently leads to an increase in the cyber and, in particular, zero-day attacks. The cost of generating appropriate signatures for these attacks is a potential motive for using machine learning-based methodologies. Although there exist many studies on the use of learning-based methods for attack detection, they generally use extracted features and overlook raw contents. This approach can lessen the performance of detection systems against content-based attacks like SQL injection, Cross-site Scripting (XSS), and various viruses. As a new paradigm, in this work, we propose a scheme, called deep intrusion detection (DID) system that uses the pure content of traffic flows in addition to traffic metadata in the learning and detection phases. To this end, we employ deep learning techniques recently developed in the machine learning community. Due to the inherent nature of deep learning, it can process high dimensional data content and, accordingly, discover the sophisticated relations between the auto extracted features of the traffic. To evaluate the proposed DID system, we use the ISCX IDS 2017 dataset. The evaluation metrics, such as precision and recall, reach 0.992 and 0.998, respectively, which show the high performance of the proposed DID method.

READ FULL TEXT
research
08/20/2021

An Adaptable Deep Learning-Based Intrusion Detection System to Zero-Day Attacks

The intrusion detection system (IDS) is an essential element of security...
research
01/27/2022

Early Detection of Network Attacks Using Deep Learning

The Internet has become a prime subject to security attacks and intrusio...
research
03/12/2023

Adv-Bot: Realistic Adversarial Botnet Attacks against Network Intrusion Detection Systems

Due to the numerous advantages of machine learning (ML) algorithms, many...
research
07/24/2020

A Comparative Study of AI-based Intrusion Detection Techniques in Critical Infrastructures

Volunteer computing uses Internet-connected devices (laptops, PCs, smart...
research
10/02/2019

Machine-Learning Techniques for Detecting Attacks in SDN

With the advent of Software Defined Networks (SDNs), there has been a ra...
research
10/18/2019

AI Safety for High Energy Physics

The field of high-energy physics (HEP), along with many scientific disci...
research
09/29/2020

Intrusion Detection Framework for SQL Injection

In this era of internet, E-Business and e-commerce applications are usin...

Please sign up or login with your details

Forgot password? Click here to reset