An Intrusion Detection Model With Attention and BiLSTM-DNN

Proceedings of the 2023 2nd Asia Conference on Algorithms, Computing and Machine Learning Pub Date : 2023-03-17 DOI:10.1145/3590003.3590018

Yongcai Tao, Jitao Zhang, Lin Wei, Yufei Gao, Lei Shi

{"title":"An Intrusion Detection Model With Attention and BiLSTM-DNN","authors":"Yongcai Tao, Jitao Zhang, Lin Wei, Yufei Gao, Lei Shi","doi":"10.1145/3590003.3590018","DOIUrl":null,"url":null,"abstract":"Abstract—At present, machine learning and deep learning are often used for network traffic intrusion detection. In order to solve the problem of unfocused feature extraction in these methods and improve the accuracy of network intrusion detection, this paper proposes an intrusion detection model that combines Attention and BiLSTM-DNN(ABD). The model uses Attention to perform preliminary feature extraction on input data, reads the relationship between different features, then uses BiLSTM to extract long-distance dependent features, uses DNN to further extract deep-level features, and finally obtains classification through SoftMax classifier. The comparison experiment uses the NSL_KDD data set, and models such as BiLSTM-DNN, support vector machine, decision tree and random forest are selected as the comparison experiment model. The experimental results show that the accuracy of the ABD is improved by 1.0% and 2.0% on the two-category and five-category tasks, respectively, which verifies the effectiveness of the method.","PeriodicalId":340225,"journal":{"name":"Proceedings of the 2023 2nd Asia Conference on Algorithms, Computing and Machine Learning","volume":"172 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-03-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2023 2nd Asia Conference on Algorithms, Computing and Machine Learning","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3590003.3590018","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Abstract—At present, machine learning and deep learning are often used for network traffic intrusion detection. In order to solve the problem of unfocused feature extraction in these methods and improve the accuracy of network intrusion detection, this paper proposes an intrusion detection model that combines Attention and BiLSTM-DNN(ABD). The model uses Attention to perform preliminary feature extraction on input data, reads the relationship between different features, then uses BiLSTM to extract long-distance dependent features, uses DNN to further extract deep-level features, and finally obtains classification through SoftMax classifier. The comparison experiment uses the NSL_KDD data set, and models such as BiLSTM-DNN, support vector machine, decision tree and random forest are selected as the comparison experiment model. The experimental results show that the accuracy of the ABD is improved by 1.0% and 2.0% on the two-category and five-category tasks, respectively, which verifies the effectiveness of the method.

查看原文本刊更多论文

基于BiLSTM-DNN的注意力入侵检测模型

摘要目前，机器学习和深度学习被广泛用于网络流量入侵检测。为了解决这些方法中特征提取不集中的问题，提高网络入侵检测的准确性，本文提出了一种将注意力与BiLSTM-DNN(ABD)相结合的入侵检测模型。该模型使用Attention对输入数据进行初步特征提取，读取不同特征之间的关系，然后使用BiLSTM提取远距离依赖特征，使用DNN进一步提取深层特征，最后通过SoftMax分类器进行分类。对比实验使用NSL_KDD数据集，选择BiLSTM-DNN、支持向量机、决策树和随机森林等模型作为对比实验模型。实验结果表明，在两类和五类任务上，ABD的准确率分别提高了1.0%和2.0%，验证了该方法的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2023 2nd Asia Conference on Algorithms, Computing and Machine Learning

自引率

0.00%

发文量