Feature Analysis for ML-based IIoT Intrusion Detection

08/29/2021
by   Mohanad Sarhan, et al.
0

Industrial Internet of Things (IIoT) networks have become an increasingly attractive target of cyberattacks. Powerful Machine Learning (ML) models have recently been adopted to implement Network Intrusion Detection Systems (NIDSs), which can protect IIoT networks. For the successful training of such ML models, it is important to select the right set of data features, which maximise the detection accuracy as well as computational efficiency. This paper provides an extensive analysis of the optimal feature sets in terms of the importance and predictive power of network attacks. Three feature selection algorithms; chi-square, information gain and correlation have been utilised to identify and rank data features. The features are fed into two ML classifiers; deep feed-forward and random forest, to measure their attack detection accuracy. The experimental evaluation considered three NIDS datasets: UNSW-NB15, CSE-CIC-IDS2018, and ToN-IoT in their proprietary flow format. In addition, the respective variants in NetFlow format were also considered, i.e., NF-UNSW-NB15, NF-CSE-CIC-IDS2018, and NF-ToN-IoT. The experimental evaluation explored the marginal benefit of adding features one-by-one. Our results show that the accuracy initially increases rapidly with the addition of features, but converges quickly to the maximum achievable detection accuracy. Our results demonstrate a significant potential of reducing the computational and storage cost of NIDS while maintaining near-optimal detection accuracy. This has particular relevance in IIoT systems, with typically limited computational and storage resource.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
04/15/2021

An Explainable Machine Learning-based Network Intrusion Detection System for Enabling Generalisability in Securing IoT Networks

Machine Learning (ML)-based network intrusion detection systems bring ma...
research
05/27/2021

Intrusion Detection using Machine Learning Techniques: An Experimental Comparison

Due to an exponential increase in the number of cyber-attacks, the need ...
research
03/22/2023

Feature Reduction Method Comparison Towards Explainability and Efficiency in Cybersecurity Intrusion Detection Systems

In the realm of cybersecurity, intrusion detection systems (IDS) detect ...
research
07/04/2023

Machine Learning-Based Intrusion Detection: Feature Selection versus Feature Extraction

Internet of things (IoT) has been playing an important role in many sect...
research
06/07/2018

AI-based Two-Stage Intrusion Detection for Software Defined IoT Networks

Software Defined Internet of Things (SD-IoT) Networks profits from centr...
research
01/27/2021

Towards a Standard Feature Set of NIDS Datasets

Network Intrusion Detection Systems (NIDSs) datasets are essential tools...
research
11/20/2020

Augmented whale feature selection for IoT attacks: Structure, analysis and applications

Smart connected appliances expand the boundaries of the conventional Int...

Please sign up or login with your details

Forgot password? Click here to reset