An efficient intrusion detection technique for traffic pattern learning

Scientia Africana Pub Date : 2024-05-14 DOI:10.4314/sa.v23i2.3

I. I. Umukoro, B.O. Eke, O. Edward

{"title":"An efficient intrusion detection technique for traffic pattern learning","authors":"I. I. Umukoro, B.O. Eke, O. Edward","doi":"10.4314/sa.v23i2.3","DOIUrl":null,"url":null,"abstract":"Efficient intrusion detection algorithms are required for network traffic learning patterns in order to protect advanced network communication channels. These systems can be used to detect normal and unusual patterns, signatures, and rule violations. In recent years, conventional and deep machine learning algorithms have been utilized in the field of network intrusion detection for network traffic learning systems. The use of machine learning opens up new attack surfaces that are very intriguing to investigate. Attackers can introduce noisy data into training data to influence testing patterns in computer networks. The goal of this work is to create an efficient intrusion detection solution for network traffic learning patterns using a supervised and unsupervised technique. We developed an effective intrusion detection system (IDs) using an appropriate NSLKDD dataset for network traffic patterns. The model was trained and evaluated using the Genetic Optimization Algorithm (GOA) and the Niave Bayesian technique to recognize usual and unexpected network traffic patterns. We created a strategy that begins with a random population and subsequent iterates through the fitness function, returning the best parents with high detection accuracy. The best parents were determined using the n-parameters iterated by the crossover and mutation procedures. A cross over function was created to combine genes from two fitness parents by randomly selecting portions from each parent. The individual components of the crossover offsprings are randomly flipped to achieve the mutation. The fitness of the previous generation was obtained to generate a new generation, and this process was repeated n times. This was created to detect network intrusions using Nave Bayes' binary categorization problem and evolutionary algorithms. We accomplished this task by aggregating noise into training set before broadcasting the average number, and it is critical not to have that public average too frequently. The experimental results reveal that our proposed GA fared better than the NB technique, with a detection accuracy of 95.0% versus a recommendable detection accuracy of 53.0%. ","PeriodicalId":166410,"journal":{"name":"Scientia Africana","volume":"106 25","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-05-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Scientia Africana","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4314/sa.v23i2.3","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Efficient intrusion detection algorithms are required for network traffic learning patterns in order to protect advanced network communication channels. These systems can be used to detect normal and unusual patterns, signatures, and rule violations. In recent years, conventional and deep machine learning algorithms have been utilized in the field of network intrusion detection for network traffic learning systems. The use of machine learning opens up new attack surfaces that are very intriguing to investigate. Attackers can introduce noisy data into training data to influence testing patterns in computer networks. The goal of this work is to create an efficient intrusion detection solution for network traffic learning patterns using a supervised and unsupervised technique. We developed an effective intrusion detection system (IDs) using an appropriate NSLKDD dataset for network traffic patterns. The model was trained and evaluated using the Genetic Optimization Algorithm (GOA) and the Niave Bayesian technique to recognize usual and unexpected network traffic patterns. We created a strategy that begins with a random population and subsequent iterates through the fitness function, returning the best parents with high detection accuracy. The best parents were determined using the n-parameters iterated by the crossover and mutation procedures. A cross over function was created to combine genes from two fitness parents by randomly selecting portions from each parent. The individual components of the crossover offsprings are randomly flipped to achieve the mutation. The fitness of the previous generation was obtained to generate a new generation, and this process was repeated n times. This was created to detect network intrusions using Nave Bayes' binary categorization problem and evolutionary algorithms. We accomplished this task by aggregating noise into training set before broadcasting the average number, and it is critical not to have that public average too frequently. The experimental results reveal that our proposed GA fared better than the NB technique, with a detection accuracy of 95.0% versus a recommendable detection accuracy of 53.0%.

查看原文本刊更多论文

流量模式学习的高效入侵检测技术

为了保护先进的网络通信通道，需要高效的入侵检测算法来学习网络流量模式。这些系统可用于检测正常和异常模式、签名和违反规则行为。近年来，传统和深度机器学习算法已被用于网络流量学习系统的网络入侵检测领域。机器学习的使用开辟了新的攻击面，非常值得研究。攻击者可以在训练数据中引入噪声数据，从而影响计算机网络中的检测模式。这项工作的目标是利用监督和非监督技术，为网络流量学习模式创建一个高效的入侵检测解决方案。我们利用适当的 NSLKDD 数据集开发了一个有效的入侵检测系统（IDs），用于检测网络流量模式。我们使用遗传优化算法（GOA）和 Niave Bayesian 技术对模型进行了训练和评估，以识别通常和意外的网络流量模式。我们创建了一种策略，从随机种群开始，随后通过适应度函数迭代，返回具有高检测准确性的最佳亲代。通过交叉和突变程序迭代的 n 个参数来确定最佳父代。创建交叉函数的目的是通过随机选择每个亲本中的部分基因，将两个健合亲本中的基因组合在一起。交叉后代的各个部分随机翻转，以实现突变。获得上一代的适合度后生成新一代，这一过程重复 n 次。这就是利用 Nave Bayes 的二元分类问题和进化算法来检测网络入侵。为了完成这项任务，我们先将噪声聚合到训练集中，然后再公布平均值，关键是公布平均值的频率不能太高。实验结果表明，我们提出的 GA 比 NB 技术更好，其检测准确率为 95.0%，而推荐的检测准确率为 53.0%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Scientia Africana

自引率

0.00%

发文量