A Review of Intrusion Detection Systems: Datasets and machine learning methods

Proceedings of the 4th International Conference on Networking, Information Systems & Security Pub Date : 2021-04-01 DOI:10.1145/3454127.3456576

Aouatif Arqane, Omar Boutkhoum, Hicham Boukhriss, A. Moutaouakkil

{"title":"A Review of Intrusion Detection Systems: Datasets and machine learning methods","authors":"Aouatif Arqane, Omar Boutkhoum, Hicham Boukhriss, A. Moutaouakkil","doi":"10.1145/3454127.3456576","DOIUrl":null,"url":null,"abstract":"At the present time, Security is a crucial issue for all organizations and companies, because intruders are constantly developing new techniques to infiltrate their infrastructure to steal or manipulate sensitive data. Thus, Intrusion Detection System (IDS) has emerged as new technology to protect networks and systems against suspicious activities. Numerous cybersecurity experts highlight the importance of IDS to strength the defensive capacities of systems by alerting for suspicious activities and malicious attacks. Over the years, many techniques like Machine learning (ML) and Deep Learning (DL) have been used to increase the detection accuracy and reduce the false alerts of IDSs. This survey paper presents an overview of some ML and DL algorithms among the most used for IDS. Additionally, because these algorithms depend on the characteristics of malicious events stored in datasets to identify anomalies, we list some publicly available cybersecurity datasets. Furthermore, we highlight the challenges that experts must overcome to enhance the performance of their methods.","PeriodicalId":432206,"journal":{"name":"Proceedings of the 4th International Conference on Networking, Information Systems & Security","volume":"362 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-04-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 4th International Conference on Networking, Information Systems & Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3454127.3456576","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

At the present time, Security is a crucial issue for all organizations and companies, because intruders are constantly developing new techniques to infiltrate their infrastructure to steal or manipulate sensitive data. Thus, Intrusion Detection System (IDS) has emerged as new technology to protect networks and systems against suspicious activities. Numerous cybersecurity experts highlight the importance of IDS to strength the defensive capacities of systems by alerting for suspicious activities and malicious attacks. Over the years, many techniques like Machine learning (ML) and Deep Learning (DL) have been used to increase the detection accuracy and reduce the false alerts of IDSs. This survey paper presents an overview of some ML and DL algorithms among the most used for IDS. Additionally, because these algorithms depend on the characteristics of malicious events stored in datasets to identify anomalies, we list some publicly available cybersecurity datasets. Furthermore, we highlight the challenges that experts must overcome to enhance the performance of their methods.

查看原文本刊更多论文

入侵检测系统综述:数据集和机器学习方法

目前，安全性是所有组织和公司的关键问题，因为入侵者不断开发新技术来渗透其基础设施以窃取或操纵敏感数据。因此，入侵检测系统(IDS)作为一种保护网络和系统免受可疑活动侵害的新技术应运而生。许多网络安全专家强调了IDS的重要性，通过警报可疑活动和恶意攻击来加强系统的防御能力。多年来，机器学习(ML)和深度学习(DL)等许多技术已被用于提高检测精度并减少入侵防御系统的错误警报。本文概述了IDS中最常用的ML和DL算法。此外，由于这些算法依赖于存储在数据集中的恶意事件的特征来识别异常，我们列出了一些公开可用的网络安全数据集。此外，我们强调了专家必须克服的挑战，以提高他们的方法的性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 4th International Conference on Networking, Information Systems & Security

自引率

0.00%

发文量