Cargando…
SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems
In cybersecurity, a network intrusion detection system (NIDS) is a critical component in networks. It monitors network traffic and flags suspicious activities. To effectively detect malicious traffic, several detection techniques, including machine learning-based NIDSs (ML-NIDSs), have been proposed...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2023
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10538047/ https://www.ncbi.nlm.nih.gov/pubmed/37765852 http://dx.doi.org/10.3390/s23187796 |
| _version_ | 1785113237141848064 |
|---|---|
| author | Aldhaheri, Sahar Alhuzali, Abeer |
| author_facet | Aldhaheri, Sahar Alhuzali, Abeer |
| author_sort | Aldhaheri, Sahar |
| collection | PubMed |
| description | In cybersecurity, a network intrusion detection system (NIDS) is a critical component in networks. It monitors network traffic and flags suspicious activities. To effectively detect malicious traffic, several detection techniques, including machine learning-based NIDSs (ML-NIDSs), have been proposed and implemented. However, in much of the existing ML-NIDS research, the experimental settings do not accurately reflect real-world scenarios where new attacks are constantly emerging. Thus, the robustness of intrusion detection systems against zero-day and adversarial attacks is a crucial area that requires further investigation. In this paper, we introduce and develop a framework named SGAN-IDS. This framework constructs adversarial attack flows designed to evade detection by five BlackBox ML-based IDSs. SGAN-IDS employs generative adversarial networks and self-attention mechanisms to generate synthetic adversarial attack flows that are resilient to detection. Our evaluation results demonstrate that SGAN-IDS has successfully constructed adversarial flows for various attack types, reducing the detection rate of all five IDSs by an average of 15.93%. These findings underscore the robustness and broad applicability of the proposed model. |
| format | Online Article Text |
| id | pubmed-10538047 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2023 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-105380472023-09-29 SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems Aldhaheri, Sahar Alhuzali, Abeer Sensors (Basel) Article In cybersecurity, a network intrusion detection system (NIDS) is a critical component in networks. It monitors network traffic and flags suspicious activities. To effectively detect malicious traffic, several detection techniques, including machine learning-based NIDSs (ML-NIDSs), have been proposed and implemented. However, in much of the existing ML-NIDS research, the experimental settings do not accurately reflect real-world scenarios where new attacks are constantly emerging. Thus, the robustness of intrusion detection systems against zero-day and adversarial attacks is a crucial area that requires further investigation. In this paper, we introduce and develop a framework named SGAN-IDS. This framework constructs adversarial attack flows designed to evade detection by five BlackBox ML-based IDSs. SGAN-IDS employs generative adversarial networks and self-attention mechanisms to generate synthetic adversarial attack flows that are resilient to detection. Our evaluation results demonstrate that SGAN-IDS has successfully constructed adversarial flows for various attack types, reducing the detection rate of all five IDSs by an average of 15.93%. These findings underscore the robustness and broad applicability of the proposed model. MDPI 2023-09-11 /pmc/articles/PMC10538047/ /pubmed/37765852 http://dx.doi.org/10.3390/s23187796 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Aldhaheri, Sahar Alhuzali, Abeer SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems |
| title | SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems |
| title_full | SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems |
| title_fullStr | SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems |
| title_full_unstemmed | SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems |
| title_short | SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems |
| title_sort | sgan-ids: self-attention-based generative adversarial network against intrusion detection systems |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10538047/ https://www.ncbi.nlm.nih.gov/pubmed/37765852 http://dx.doi.org/10.3390/s23187796 |
| work_keys_str_mv | AT aldhaherisahar sganidsselfattentionbasedgenerativeadversarialnetworkagainstintrusiondetectionsystems AT alhuzaliabeer sganidsselfattentionbasedgenerativeadversarialnetworkagainstintrusiondetectionsystems |