首页|IDS-INT:Intrusion detection system using transformer-based transfer learning for imbalanced network traffic

IDS-INT:Intrusion detection system using transformer-based transfer learning for imbalanced network traffic

扫码查看
原文链接
  • NETL
  • NSTL
  • 万方数据
A network intrusion detection system is critical for cyber security against illegitimate attacks.In terms of feature perspectives,network traffic may include a variety of elements such as attack reference,attack type,a sub-category of attack,host information,malicious scripts,etc.In terms of network perspectives,network traffic may contain an imbalanced number of harmful attacks when compared to normal traffic.It is challenging to identify a specific attack due to complex features and data imbalance issues.To address these issues,this paper proposes an Intrusion Detection System using transformer-based transfer learning for Imbalanced Network Traffic(IDS-INT).IDS-INT uses transformer-based transfer learning to learn feature interactions in both network feature representation and imbalanced data.First,detailed information about each type of attack is gathered from network interaction descriptions,which include network nodes,attack type,reference,host information,etc.Second,the transformer-based transfer learning approach is developed to learn detailed feature representation using their semantic anchors.Third,the Synthetic Minority Oversampling Technique(SMOTE)is implemented to balance abnormal traffic and detect minority attacks.Fourth,the Convolution Neural Network(CNN)model is designed to extract deep features from the balanced network traffic.Finally,the hybrid approach of the CNN-Long Short-Term Memory(CNN-LSTM)model is developed to detect different types of attacks from the deep features.Detailed experiments are conducted to test the proposed approach using three standard datasets,i.e.,UNSW-NB15,CIC-IDS2017,and NSL-KDD.An explainable AI approach is implemented to interpret the proposed method and develop a trustable model.

Network intrusion detectionTransfer learningFeatures extractionImbalance dataExplainable AICybersecurity

Farhan Ullah、Shamsher Ullah、Gautam Srivastava、Jerry Chun-Wei Lin

展开 >

School of Software,Northwestern Polytechnical University,Xian,710072,Shaanxi,China

Knowledge Unit of Systems and Technology,University of Management and Technology,Sialkot,51040,Pakistan

Department of Math and Computer Science,Brandon University,Brandon,MB R7A 6A9,Canada

Department of Computer Science and Math,Lebanese American University,Beirut,1102,Lebanon

Research Centre for Interneural Computing,China Medical University,Taichung,Taiwan,China

Western Norway University of Applied Sciences,Bergen,Norway

展开 >

2024

10.1016/j.dcan.2023.03.008

数字通信与网络(英文)

数字通信与网络(英文)

ISSN:
年,卷(期):2024.10(1)
  • 42