A cloud-based hybrid intrusion detection framework using XGBoost and ADASYN-Augmented random forest for IoMT

IF 1.5 4区计算机科学 Q3 ENGINEERING, ELECTRICAL & ELECTRONIC

IET Communications Pub Date : 2024-09-17 DOI:10.1049/cmu2.12833

Arash Salehpour, Monire Norouzi, Mohammad Ali Balafar, Karim SamadZamini

{"title":"A cloud-based hybrid intrusion detection framework using XGBoost and ADASYN-Augmented random forest for IoMT","authors":"Arash Salehpour, Monire Norouzi, Mohammad Ali Balafar, Karim SamadZamini","doi":"10.1049/cmu2.12833","DOIUrl":null,"url":null,"abstract":"<p>Internet of Medical Things have vastly increased the potential for remote patient monitoring, data-driven care, and networked healthcare delivery. However, the connectedness lays sensitive patient data and fragile medical devices open to security threats that need robust intrusion detection solutions within cloud-edge services. Current approaches need modification to be able to handle the practical challenges that result from problems with data quality. This paper presents a hybrid intrusion detection framework that enhances the security of IoMT networks. There are three modules in the design. First, an XGBoost-based noise detection model is used to identify data anomalies. Second, adaptive resampling with ADASYN is done to fine-tune the class distribution to address class imbalance. Third, ensemble learning performs intrusion detection through a Random Forest classifier. This stacked model coordinates techniques that filter noise and preprocess imbalanced data, identifying threats with high accuracy and reliability. These results are then experimentally validated on the UNSW-NB15 benchmark to demonstrate effective detection under realistically noisy conditions. The novel contributions of the work are a new hybrid structural paradigm coupled with integrated noise filtering, and ensemble learning. The proposed advanced oversampling with ADASYN gives a performance that surpasses all others with a reported 92.23% accuracy.</p>","PeriodicalId":55001,"journal":{"name":"IET Communications","volume":"18 19","pages":"1371-1390"},"PeriodicalIF":1.5000,"publicationDate":"2024-09-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://onlinelibrary.wiley.com/doi/epdf/10.1049/cmu2.12833","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IET Communications","FirstCategoryId":"94","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1049/cmu2.12833","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"ENGINEERING, ELECTRICAL & ELECTRONIC","Score":null,"Total":0}

引用次数: 0

Abstract

Internet of Medical Things have vastly increased the potential for remote patient monitoring, data-driven care, and networked healthcare delivery. However, the connectedness lays sensitive patient data and fragile medical devices open to security threats that need robust intrusion detection solutions within cloud-edge services. Current approaches need modification to be able to handle the practical challenges that result from problems with data quality. This paper presents a hybrid intrusion detection framework that enhances the security of IoMT networks. There are three modules in the design. First, an XGBoost-based noise detection model is used to identify data anomalies. Second, adaptive resampling with ADASYN is done to fine-tune the class distribution to address class imbalance. Third, ensemble learning performs intrusion detection through a Random Forest classifier. This stacked model coordinates techniques that filter noise and preprocess imbalanced data, identifying threats with high accuracy and reliability. These results are then experimentally validated on the UNSW-NB15 benchmark to demonstrate effective detection under realistically noisy conditions. The novel contributions of the work are a new hybrid structural paradigm coupled with integrated noise filtering, and ensemble learning. The proposed advanced oversampling with ADASYN gives a performance that surpasses all others with a reported 92.23% accuracy.

Abstract Image

查看原文本刊更多论文

基于XGBoost和ad异步增强随机森林的基于云的混合入侵检测框架

医疗物联网极大地增加了远程患者监控、数据驱动型护理和网络化医疗保健交付的潜力。然而，这种连通性将敏感的患者数据和脆弱的医疗设备置于安全威胁之下，需要在云边缘服务中提供强大的入侵检测解决方案。当前的方法需要修改，以便能够处理由数据质量问题引起的实际挑战。提出了一种提高IoMT网络安全性的混合入侵检测框架。在设计中有三个模块。首先，使用基于xgboost的噪声检测模型来识别数据异常。其次，利用ADASYN进行自适应重采样，对类分布进行微调，解决类不平衡问题。第三，集成学习通过随机森林分类器进行入侵检测。这种堆叠模型协调了过滤噪声和预处理不平衡数据的技术，以高精度和可靠性识别威胁。这些结果随后在UNSW-NB15基准上进行了实验验证，以证明在实际噪声条件下的有效检测。这项工作的新贡献是一种新的混合结构范式，结合了集成噪声滤波和集成学习。所提出的ADASYN高级过采样的性能优于所有其他方法，据报道准确率为92.23%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IET Communications 工程技术-工程：电子与电气

CiteScore

4.30

自引率

6.20%

发文量

220

审稿时长

5.9 months

期刊介绍： IET Communications covers the fundamental and generic research for a better understanding of communication technologies to harness the signals for better performing communication systems using various wired and/or wireless media. This Journal is particularly interested in research papers reporting novel solutions to the dominating problems of noise, interference, timing and errors for reduction systems deficiencies such as wasting scarce resources such as spectra, energy and bandwidth. Topics include, but are not limited to: Coding and Communication Theory; Modulation and Signal Design; Wired, Wireless and Optical Communication; Communication System Special Issues. Current Call for Papers: Cognitive and AI-enabled Wireless and Mobile - https://digital-library.theiet.org/files/IET_COM_CFP_CAWM.pdf UAV-Enabled Mobile Edge Computing - https://digital-library.theiet.org/files/IET_COM_CFP_UAV.pdf