An Intrusion Detection System for Imbalanced Dataset Based on Deep Learning

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Anomaly based Network intrusion detection system(NIDS), which is the methodology used for detecting new attacks, has achieved promising performance with the adoption of deep learning(DL). However, these NIDSs still have shortcomings. Most of the datasets used for NIDS are highly imbalanced, where the number of samples that belong to normal traffic is much larger than the attack traffic. The problem of imbalanced class limits the deep learning classifier's performance for minority classes by misleading the classifier to be biased in favor of the majority class. To improve the detection rate for minority classes while ensuring efficiency, this study proposes a hybrid approach to handle the imbalance problem. This hybrid approach is a combination of Synthetic Minority Over-Sampling (SMOTE) and under-sampling to reduce noise using Tomek link. Additionally, this study uses two deep learning models such as Long Short-Term Memory Network (LSTM) and Convolutional Neural Network (CNN) to provide a better intrusion detection system. The advantage of our proposed model is tested in NSL-KDD and CICIDS2017 datasets. We use 10-fold cross validation in this work to train the learning models and an independent test set for evaluation. The experimental results show that in the multiclass classification with NSLKDD dataset, the proposed model reached an overall accuracy and Fscore of 99.57% and 98.98% respectively on LSTM, an overall accuracy and Fscore of 99.70% and 99.27% respectively for CNN. And with CICICD2017 an overall accuracy and Fscore of 99.82% and 98.65 % respectively on LSTM, an overall accuracy and Fscore of 99.85% and 98.98% respectively for CNN.

Original languageEnglish
Title of host publicationProceedings - 2021 9th International Symposium on Computing and Networking, CANDAR 2021
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages38-47
Number of pages10
ISBN (Electronic)9781665442466
DOIs
Publication statusPublished - 2021
Event9th International Symposium on Computing and Networking, CANDAR 2021 - Virtual, Online, Japan
Duration: Nov 23 2021Nov 26 2021

Publication series

NameProceedings - 2021 9th International Symposium on Computing and Networking, CANDAR 2021

Conference

Conference9th International Symposium on Computing and Networking, CANDAR 2021
Country/TerritoryJapan
CityVirtual, Online
Period11/23/2111/26/21

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'An Intrusion Detection System for Imbalanced Dataset Based on Deep Learning'. Together they form a unique fingerprint.

Cite this