Scribd
Upload
67 views3 pages

Deep Learning for Intrusion Detection

This document proposes a deep learning approach using a distributed deep neural network (DNN) framework called Scale-Hybrid-IDS-AlertNet (SHIA) to develop an intrusion detection system (IDS) that can effectively detect cyber attacks in real time. Existing IDS methods have limitations as attacks are constantly changing and occurring in large volumes. The proposed system collects network- and host-based features using DNNs, which were shown to outperform classical machine learning classifiers on various IDS datasets. The scalable SHIA framework running on commodity hardware servers can analyze large-scale data using distributed deep learning to accurately detect known and unknown attacks.

Uploaded by

cse VBIT
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
67 views3 pages

Deep Learning for Intrusion Detection

This document proposes a deep learning approach using a distributed deep neural network (DNN) framework called Scale-Hybrid-IDS-AlertNet (SHIA) to develop an intrusion detection system (IDS) that can effectively detect cyber attacks in real time. Existing IDS methods have limitations as attacks are constantly changing and occurring in large volumes. The proposed system collects network- and host-based features using DNNs, which were shown to outperform classical machine learning classifiers on various IDS datasets. The scalable SHIA framework running on commodity hardware servers can analyze large-scale data using distributed deep learning to accurately detect known and unknown attacks.

Uploaded by

cse VBIT
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

Deep Learning Approach for Intelligen Intrusion Detection System

ABSTRACT
Machine learning techniques are being widely used to develop an intrusion detection system
(IDS) for detecting and classifying cyber-attacks at the network-level and host-level in a timely
and automatic manner. However, no existing study has shown the detailed analysis of the
performance of various machine learning algorithms on various publicly available datasets. In
this paper, deep neural network (DNN), a type of deep learning model is explored to develop
flexible and effective IDS to detect and classify unforeseen and unpredictable cyber-attacks. The
continuous change in network behavior and rapid evolution of attacks makes it necessary to
evaluate various datasets which are generated over the years through static and dynamic
approaches. This type of study facilitates to identify the best algorithm which can effectively
work in detecting future cyber-attacks. A comprehensive evaluation of experiments of DNNs and
other classical machine learning classifiers are shown on various publicly available benchmark
malware datasets. Our DNN model learns the abstract and high dimensional feature
representation of the IDS data by passing them into many hidden layers. Through a rigorous
experimental testing it is confirmed that DNNs perform well in comparison to the classical
machine learning classifiers. Finally, we propose a highly scalable and hybrid DNNs framework
called Scale-Hybrid-IDS-AlertNet (SHIA) which can be used in real time to effectively monitor
the network traffic and host-level events to proactively alert possible cyber-attacks.
EXISTING SYSTEM
Many challenges arise since malicious attacks are continually changing and are occurring in very
large volumes requiring a scalable solution. There are different malware datasets available
publicly for further research by cyber security community. However, no existing study has
shown the detailed analysis of the performance of various machine learning algorithms on
various publicly available datasets. Due to the dynamic nature of malware with continuously
changing attacking methods, the malware datasets available publicly are to be updated
systematically and benchmarked.
Disadvantages of Existing System:
1. Malicious cyber-attacks pose serious security issues
PROPOSED SYSTEM
In this paper, we proposed a hybrid intrusion detection alert system using a highly scalable
framework on commodity hardware server which has the capability to analyze the network and
host-level activities. The framework employed distributed deep learning model with DNNs for
handling and analyzing very large scale data in real time. The DNN model was chosen by
comprehensively evaluating their performance in comparison to classical machine learning
classifiers on various benchmark IDS datasets. In addition, we collected host-based and network-
based features in real-time and employed the proposed DNN model for detecting attacks and
intrusions. In all the cases, we observed that DNNs exceeded in performance when compared to
the classical machine learning classifiers. Our proposed architecture is able to perform better
than previously implemented classical machine learning classifiers in both HIDS and NIDS. To
the best of our knowledge this is the only framework which has the capability to collect network-
level and host-level activities in a distributed manner using DNNs to detect attack more
accurately.
Advantages of Proposed System:
1. This can effectively work in detecting cyber-attacks.

SYSTEM CONFIGURATION

Hardware Configuration

 Processor - Pentium –IV

 Speed - 1.1 Ghz


 RAM - 256 MB(min)
 Hard Disk - 20 GB
 Key Board - Standard Windows Keyboard
 Mouse - Two or Three Button Mouse
 Monitor - SVGA

Software Configuration

 Operating System : Windows XP


 Programming Language : JAVA

You might also like