Abstract
Internet is a medium of globally interconnected independent networks. Though it was created to interconnect government research laboratories in 1994, it has witnessed phenomenal growth and has expanded to service millions of users in governments, academia and public/private organizations for multitude of purposes. Internet has been evolving continuously. Internet has also evidenced many attacks on its networks called cyberattacks. As Internet evolves, adversaries also evolve in their attacking techniques making it imperative to guard networks from attacks. In spite of firewalls, AVs (Anti Viruses) and other defense mechanisms, there is an implicit need to monitor deliberate proliferations. IDSs (Intrusion Detection Systems) are techniques that help monitor networks and raise alarms on finding damaging proliferations. This also implies IDSs need to be quick in their assessments of malicious behavior on the network. This paper proposes a NN (Neural Network) based IDS that can quickly respond to attacks by analyzing low-level network details. The proposed scheme is evaluated on the In CIRA-CIC-DoHBrw-2020 dataset where it averagely scores above 90% in accuracy when benchmarked on different sample sizes.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Cisco Annual Internet Report (2018–2023). Online at https://www.cisco.com/c/en/us/solutions/collateral/executive-perspectives/annual-internet-report/white-paper-c11-741490.html
Pałka, D., Zachara, M.: Learning web application firewall-benefits and caveats. In: International Conference on Availability, Reliability, and Security, Aug 2011, pp. 295–308. Springer, Berlin Heidelberg
McHugh, J.: Intrusion and intrusion detection. Int. J. Inf. Secur. 1(1), 14–35 (2001)
Liao, H.-J., Richard Lin, C.-H., Lin, Y.-C., Tung, K.-Y.: Intrusion detection system: a comprehensive review. J. Netw. Comput. Appl. 36, 16–24 (2013). https://doi.org/10.1016/j.jnca.2012.09.004
Xie, M., Hu, J.: Evaluating host-based anomaly detection systems: a preliminary analysis of ADFA-LD. In: 6th International Congress on Image and Signal Processing (CISP), Hangzhou, China (2013)
Zhao, R., Yan, R., Chen, Z., Mao, K., Wang, P., Gao, R.X.: Deep learning and its applications to machine health monitoring: a survey. IEEE Trans. Neural Netw. Learn. Syst. (2016)
Lee, H., Kim, Y., Kim, C.O.: A deep learning model for robust wafer fault monitoring with sensor measurement noise. IEEE Trans. Semicond. Manuf. 30(1), 23–31 (2017)
Barghi, M.N., Hosseinkhani, J., Keikhaee, S.: An effective web mining-based approach to ımprove the detection of alerts in ıntrusion detection systems. Int. J. Adv. Comput. Sci. Inf. Technol. (IJACSIT) (ELVEDIT) 4(1), 38–45 (2015)
Koo, T.M., Chang, H.C., Hsu, Y.T., Lin, H.Y.: Malicious website detection based on honeypot systems. In: 2nd International Conference on Advances in Computer Science and Engineering (CSE 2013), July 2013
Friedberg, I., Skopik, F., Settanni, G., Fiedler, R.: Combating advanced persistent threats: from network event correlation to incident detection. Comput. Secur. 48, 35–57 (2015)
Salama, S.E., Marie, M.I., El-Fangary, L.M., Helmy, Y.K.: Webanomaly misuse intrusion detection framework for SQL injection detection. Int. J. Adv. Comput. Sci. Appl. (IJACSA), Editorial Preface 3.3-Citeseer 3(3), 123–129 (2012)
Vigna, G., Robertson, W., Kher, V., Kemmerer, R.A.: A stateful intrusion detection system for world-wide web servers. In: Proceedings of the Annual Computer Security Applications Conference (ACSAC 2003), Las Vegas, NV, Dec 2003, pp. 34–43
Shaikh, S.A., Chivers, H., Nobles, P., Clark, J.A., Chen, H.: A deployment value model for intrusion detection sensors. In: Lecture Notes in Computer Science in 3rd International Conference on Information Security and Assurance, June 2009, vol. 5576, pp. 250–259
Davis, J.J., Clark, A.J.: Data preprocessing for anomaly based network intrusion detection: a review. Comput. Secur. 30(6–7), 353–375 (2011)
Mohammadpour, L., Hussain, M., Aryanfar, A., Raee, V.M., Sattar, F.: Evaluating performance of intrusion detection system using support vector machines: review. Int. J. Secur. Appl. 9(9) (2015)
Litjens, G., et al.: A survey on deep learning in medical ımage analysis. CoRR, vol. 1702.05747 (2017)
Singh, R., Kumar, H., Singla, R.K.: An intrusion detection system using network traffic profiling and online sequential extreme learning machine. Expert Syst. Appl. 42(22), 8609–8624 (2015)
Iguyon, I., Elisseeff, A.: An introduction to variable and feature selection. J. Mach. Learn. Res. 3, 1157–1182 (2003)
Zhou, P., Hu, X., Li, P., Wu, X.: Online feature selection for high-dimensional class-imbalanced data. Knowl.-Based Syst. 136, 187–199 (2017)
Liu, H., Yu, L.: Toward integrating feature selection algorithms for classification and clustering. IEEE Trans. Knowl. Data Eng. 17(4), 491–502 (2005)
Benabdeslem, K., Hindawi, M.: Efficient semi-supervised feature selection: constraint, relevance, and redundancy. IEEE Trans. Knowl. Data Eng. 26(5), 1131–1143 (2014)
Shibahara, T., Yagi, T., Akiyama, M., Chiba, D., Yada, T.: Efficient dynamic malware analysis based on network behavior using deep learning. In: 2016 IEEE Global Communications Conference (GLOBECOM), pp. 1–7. IEEE (2016)
Raman, K., et al.: Selecting features to classify malware. InfoSec Southwest, vol. 2012. In: A Survey on Malware Detection from Deep Learning, p. 79 (2012)
Firdausi, A.E., Nugroho, A.S., et al.: Analysis of machine learning techniques used in behavior-based malware detection. In: 2010 Second International Conference on Advances in Computing, Control and Telecommunication Technologies (ACT), pp. 201–203. IEEE (2010)
Kolosnjaji, B., Zarras, A., Webster, G., Eckert, C.: Deep learning for classification of malware system call sequences. In: Australasian Joint Conference on Artificial Intelligence, pp. 137–149. Springer (2016)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2022 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Ramakrishnan, S., Senthil Rajan, A. (2022). Network Attack Detection with QNNBADT in Minimal Response Times Using Minimized Features. In: Smys, S., Bestak, R., Palanisamy, R., Kotuliak, I. (eds) Computer Networks and Inventive Communication Technologies . Lecture Notes on Data Engineering and Communications Technologies, vol 75. Springer, Singapore. https://doi.org/10.1007/978-981-16-3728-5_43
Download citation
DOI: https://doi.org/10.1007/978-981-16-3728-5_43
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-16-3727-8
Online ISBN: 978-981-16-3728-5
eBook Packages: EngineeringEngineering (R0)