Cargando…
Analysis of Autoencoders for Network Intrusion Detection †
As network attacks are constantly and dramatically evolving, demonstrating new patterns, intelligent Network Intrusion Detection Systems (NIDS), using deep-learning techniques, have been actively studied to tackle these problems. Recently, various autoencoders have been used for NIDS in order to acc...
| Autores principales: | , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8272075/ https://www.ncbi.nlm.nih.gov/pubmed/34201798 http://dx.doi.org/10.3390/s21134294 |
| _version_ | 1783721140758249472 |
|---|---|
| author | Song, Youngrok Hyun, Sangwon Cheong, Yun-Gyung |
| author_facet | Song, Youngrok Hyun, Sangwon Cheong, Yun-Gyung |
| author_sort | Song, Youngrok |
| collection | PubMed |
| description | As network attacks are constantly and dramatically evolving, demonstrating new patterns, intelligent Network Intrusion Detection Systems (NIDS), using deep-learning techniques, have been actively studied to tackle these problems. Recently, various autoencoders have been used for NIDS in order to accurately and promptly detect unknown types of attacks (i.e., zero-day attacks) and also alleviate the burden of the laborious labeling task. Although the autoencoders are effective in detecting unknown types of attacks, it takes tremendous time and effort to find the optimal model architecture and hyperparameter settings of the autoencoders that result in the best detection performance. This can be an obstacle that hinders practical applications of autoencoder-based NIDS. To address this challenge, we rigorously study autoencoders using the benchmark datasets, NSL-KDD, IoTID20, and N-BaIoT. We evaluate multiple combinations of different model structures and latent sizes, using a simple autoencoder model. The results indicate that the latent size of an autoencoder model can have a significant impact on the IDS performance. |
| format | Online Article Text |
| id | pubmed-8272075 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-82720752021-07-11 Analysis of Autoencoders for Network Intrusion Detection † Song, Youngrok Hyun, Sangwon Cheong, Yun-Gyung Sensors (Basel) Article As network attacks are constantly and dramatically evolving, demonstrating new patterns, intelligent Network Intrusion Detection Systems (NIDS), using deep-learning techniques, have been actively studied to tackle these problems. Recently, various autoencoders have been used for NIDS in order to accurately and promptly detect unknown types of attacks (i.e., zero-day attacks) and also alleviate the burden of the laborious labeling task. Although the autoencoders are effective in detecting unknown types of attacks, it takes tremendous time and effort to find the optimal model architecture and hyperparameter settings of the autoencoders that result in the best detection performance. This can be an obstacle that hinders practical applications of autoencoder-based NIDS. To address this challenge, we rigorously study autoencoders using the benchmark datasets, NSL-KDD, IoTID20, and N-BaIoT. We evaluate multiple combinations of different model structures and latent sizes, using a simple autoencoder model. The results indicate that the latent size of an autoencoder model can have a significant impact on the IDS performance. MDPI 2021-06-23 /pmc/articles/PMC8272075/ /pubmed/34201798 http://dx.doi.org/10.3390/s21134294 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Song, Youngrok Hyun, Sangwon Cheong, Yun-Gyung Analysis of Autoencoders for Network Intrusion Detection † |
| title | Analysis of Autoencoders for Network Intrusion Detection † |
| title_full | Analysis of Autoencoders for Network Intrusion Detection † |
| title_fullStr | Analysis of Autoencoders for Network Intrusion Detection † |
| title_full_unstemmed | Analysis of Autoencoders for Network Intrusion Detection † |
| title_short | Analysis of Autoencoders for Network Intrusion Detection † |
| title_sort | analysis of autoencoders for network intrusion detection † |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8272075/ https://www.ncbi.nlm.nih.gov/pubmed/34201798 http://dx.doi.org/10.3390/s21134294 |
| work_keys_str_mv | AT songyoungrok analysisofautoencodersfornetworkintrusiondetection AT hyunsangwon analysisofautoencodersfornetworkintrusiondetection AT cheongyungyung analysisofautoencodersfornetworkintrusiondetection |