Intrusion detection system based on the beetle swarm optimization and K-RMS clustering algorithm

IF 3.9 4区计算机科学 Q2 AUTOMATION & CONTROL SYSTEMS

International Journal of Adaptive Control and Signal Processing Pub Date : 2024-03-12 DOI:10.1002/acs.3771

S. Gokul Pran, Sivakami Raja, S. Jeyasudha

{"title":"Intrusion detection system based on the beetle swarm optimization and K-RMS clustering algorithm","authors":"S. Gokul Pran, Sivakami Raja, S. Jeyasudha","doi":"10.1002/acs.3771","DOIUrl":null,"url":null,"abstract":"<div>\n \n <p>Intrusion detection is a cyber-security method that is significant for network security. It is utilized to detect behaviors that compromise security and privacy within a network or in the context of a computer system. To enhance the identification, an Intrusion Detection System Based on the Beetle Swarm Optimization and K-RMS Clustering Algorithm cluster-based hybrid classifiers is proposed in this manuscript. Here, the data is amassed from CICIDS2017 dataset. Then the data is preprocessed to eradicate the unwanted noise. After completing the preprocessed data, it can be clustered by using K-RMS clustering algorithm. This algorithm cluster the entire data to the associated cluster set depending on the data behavior. The classification algorithm is considered to predict the data as normal or attacking behaviors. The hybrid classification is used to predict the data. The solitary predictor aims to achieve high detection rates and accuracy. The hybrid classifiers, such as support vector machines, artificial neural networks are applied to recognize the normal or intruder. The performance of the SVM-ANN-IDS method attains 22.05%, 15.87%, 27.25% higher accuracy, 23.90% and 28.53% higher precision, 29.29%, 19.19% and 23.27% higher specificity and 18.28%, 24.36% and 27.49% greater recall when compared to the existing models, like developing novel deep-learning model to improve network intrusion categorization (DNN-IDS), Intrusion identification scheme on real-time data traffic under machine learning techniques along feature selection method (RNN-SVM-IDS) and recurrent deep learning basis feature fusion ensemble meta-classifier for intellectual network intrusion identification scheme (RNN-IDS) respectively.</p>\n </div>","PeriodicalId":50347,"journal":{"name":"International Journal of Adaptive Control and Signal Processing","volume":"38 5","pages":"1675-1689"},"PeriodicalIF":3.9000,"publicationDate":"2024-03-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Adaptive Control and Signal Processing","FirstCategoryId":"94","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1002/acs.3771","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"AUTOMATION & CONTROL SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Intrusion detection is a cyber-security method that is significant for network security. It is utilized to detect behaviors that compromise security and privacy within a network or in the context of a computer system. To enhance the identification, an Intrusion Detection System Based on the Beetle Swarm Optimization and K-RMS Clustering Algorithm cluster-based hybrid classifiers is proposed in this manuscript. Here, the data is amassed from CICIDS2017 dataset. Then the data is preprocessed to eradicate the unwanted noise. After completing the preprocessed data, it can be clustered by using K-RMS clustering algorithm. This algorithm cluster the entire data to the associated cluster set depending on the data behavior. The classification algorithm is considered to predict the data as normal or attacking behaviors. The hybrid classification is used to predict the data. The solitary predictor aims to achieve high detection rates and accuracy. The hybrid classifiers, such as support vector machines, artificial neural networks are applied to recognize the normal or intruder. The performance of the SVM-ANN-IDS method attains 22.05%, 15.87%, 27.25% higher accuracy, 23.90% and 28.53% higher precision, 29.29%, 19.19% and 23.27% higher specificity and 18.28%, 24.36% and 27.49% greater recall when compared to the existing models, like developing novel deep-learning model to improve network intrusion categorization (DNN-IDS), Intrusion identification scheme on real-time data traffic under machine learning techniques along feature selection method (RNN-SVM-IDS) and recurrent deep learning basis feature fusion ensemble meta-classifier for intellectual network intrusion identification scheme (RNN-IDS) respectively.

查看原文本刊更多论文

基于甲虫群优化和 K-RMS 聚类算法的入侵检测系统

摘要入侵检测是一种网络安全方法，对网络安全意义重大。它用于检测网络或计算机系统中危及安全和隐私的行为。为了提高识别能力，本手稿提出了一种基于甲虫群优化和 K-RMS 聚类算法的入侵检测系统。这里的数据来自 CICIDS2017 数据集。然后对数据进行预处理，以消除不必要的噪声。完成预处理后的数据可以使用 K-RMS 聚类算法进行聚类。该算法根据数据行为将整个数据聚类到相关的聚类集。分类算法用于预测数据是正常行为还是攻击行为。混合分类用于预测数据。单独预测器旨在实现高检测率和高准确率。混合分类器，如支持向量机、人工神经网络，则用于识别正常或入侵行为。SVM-ANN-IDS 方法的准确率分别提高了 22.05%、15.87% 和 27.25%，精确率分别提高了 23.90% 和 28.53%，特异性分别提高了 29.29%、19.19% 和 23.27%，召回率分别提高了 18.28%、24.36% 和 27.49%。与现有模型相比，如开发新型深度学习模型以改进网络入侵分类（DNN-IDS）、基于特征选择方法的机器学习技术下的实时数据流量入侵识别方案（RNN-SVM-IDS）和用于智能网络入侵识别方案的递归深度学习基础特征融合集合元分类器（RNN-IDS），召回率分别提高了 49%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Adaptive Control and Signal Processing 工程技术-工程：电子与电气

CiteScore

5.30

自引率

16.10%

发文量

163

审稿时长

5 months

期刊介绍： The International Journal of Adaptive Control and Signal Processing is concerned with the design, synthesis and application of estimators or controllers where adaptive features are needed to cope with uncertainties.Papers on signal processing should also have some relevance to adaptive systems. The journal focus is on model based control design approaches rather than heuristic or rule based control design methods. All papers will be expected to include significant novel material. Both the theory and application of adaptive systems and system identification are areas of interest. Papers on applications can include problems in the implementation of algorithms for real time signal processing and control. The stability, convergence, robustness and numerical aspects of adaptive algorithms are also suitable topics. The related subjects of controller tuning, filtering, networks and switching theory are also of interest. Principal areas to be addressed include: Auto-Tuning, Self-Tuning and Model Reference Adaptive Controllers Nonlinear, Robust and Intelligent Adaptive Controllers Linear and Nonlinear Multivariable System Identification and Estimation Identification of Linear Parameter Varying, Distributed and Hybrid Systems Multiple Model Adaptive Control Adaptive Signal processing Theory and Algorithms Adaptation in Multi-Agent Systems Condition Monitoring Systems Fault Detection and Isolation Methods Fault Detection and Isolation Methods Fault-Tolerant Control (system supervision and diagnosis) Learning Systems and Adaptive Modelling Real Time Algorithms for Adaptive Signal Processing and Control Adaptive Signal Processing and Control Applications Adaptive Cloud Architectures and Networking Adaptive Mechanisms for Internet of Things Adaptive Sliding Mode Control.