The Internet has become a prime subject to security attacks and intrusions by attackers. These attacks can lead to system malfunction, network breakdown, data corruption or theft. A network intrusion detection system (IDS) is a tool used for identifying unauthorized and malicious behavior by observing the network traffic. State-of-the-art intrusion detection systems are designed to detect an attack by inspecting the complete information about the attack. This means that an IDS would only be able to detect an attack after it has been executed on the system under attack and might have caused damage to the system. In this paper, we propose an end-to-end early intrusion detection system to prevent network attacks before they could cause any more damage to the system under attack while preventing unforeseen downtime and interruption. We employ a deep neural network-based classifier for attack identification. The network is trained in a supervised manner to extract relevant features from raw network traffic data instead of relying on a manual feature selection process used in most related approaches. Further, we introduce a new metric, called earliness, to evaluate how early our proposed approach detects attacks. We have empirically evaluated our approach on the CICIDS2017 dataset. The results show that our approach performed well and attained an overall 0.803 balanced accuracy.
|Otsikko||2022 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW)|
|DOI - pysyväislinkit|
|Tila||Julkaistu - 2022|
|OKM-julkaisutyyppi||A4 Artikkeli konferenssijulkaisuussa|
|Tapahtuma|| IEEE International Conference on Software Testing, Verification and Validation Workshops - |
Kesto: 4 huhtik. 2022 → …
|Konferenssi||IEEE International Conference on Software Testing, Verification and Validation Workshops|
|Ajanjakso||04/04/22 → …|
SormenjälkiSukella tutkimusaiheisiin 'Early Detection of Network Attacks Using Deep Learning'. Ne muodostavat yhdessä ainutlaatuisen sormenjäljen.
- 1 Aktiivinen
VeriDevOps: Automated Protection and Prevention to Meet Security Requirements in DevOps Environments
Truscan, D., Porres Paltor, I., Ashraf, A., Ahmad, T., Chariyarupadannayil Sudheerbabu, G. & Chapagain, S.
01/10/20 → 30/09/23