Ivan Sicic, Nikola Petrović, Karlo Slovenec, M. Mikuc
{"title":"网络入侵检测中自编码器的数据集间通用性评价","authors":"Ivan Sicic, Nikola Petrović, Karlo Slovenec, M. Mikuc","doi":"10.1109/ConTEL58387.2023.10199097","DOIUrl":null,"url":null,"abstract":"With the improving sophistication of computer network intrusions and the rising rate of number of novel attacks, the research focus in network intrusion detection has shifted to unsupervised and semi-supervised methods that have better zero-day detection ability and their ability to generalize across different network environments. Recently published datasets that have the same flow features but different network environments and attacks have eased the research on generalisability and improved method comparison abilities. This paper aims to continue the strive towards generalisability by examining the performance of, primarily autoencoder, and PCA, in an inter-dataset network intrusion detection tasks as these methods have not yet been evaluated across different network environments. The results indicate that while the performance of the traditionally used methods does not fully transfer on different network environments, they do perform better than a random classifier.","PeriodicalId":311611,"journal":{"name":"2023 17th International Conference on Telecommunications (ConTEL)","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-07-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Evaluation of Inter-Dataset Generalisability of Autoencoders for Network Intrusion Detection\",\"authors\":\"Ivan Sicic, Nikola Petrović, Karlo Slovenec, M. Mikuc\",\"doi\":\"10.1109/ConTEL58387.2023.10199097\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the improving sophistication of computer network intrusions and the rising rate of number of novel attacks, the research focus in network intrusion detection has shifted to unsupervised and semi-supervised methods that have better zero-day detection ability and their ability to generalize across different network environments. Recently published datasets that have the same flow features but different network environments and attacks have eased the research on generalisability and improved method comparison abilities. This paper aims to continue the strive towards generalisability by examining the performance of, primarily autoencoder, and PCA, in an inter-dataset network intrusion detection tasks as these methods have not yet been evaluated across different network environments. The results indicate that while the performance of the traditionally used methods does not fully transfer on different network environments, they do perform better than a random classifier.\",\"PeriodicalId\":311611,\"journal\":{\"name\":\"2023 17th International Conference on Telecommunications (ConTEL)\",\"volume\":\"11 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-07-11\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 17th International Conference on Telecommunications (ConTEL)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ConTEL58387.2023.10199097\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 17th International Conference on Telecommunications (ConTEL)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ConTEL58387.2023.10199097","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Evaluation of Inter-Dataset Generalisability of Autoencoders for Network Intrusion Detection
With the improving sophistication of computer network intrusions and the rising rate of number of novel attacks, the research focus in network intrusion detection has shifted to unsupervised and semi-supervised methods that have better zero-day detection ability and their ability to generalize across different network environments. Recently published datasets that have the same flow features but different network environments and attacks have eased the research on generalisability and improved method comparison abilities. This paper aims to continue the strive towards generalisability by examining the performance of, primarily autoencoder, and PCA, in an inter-dataset network intrusion detection tasks as these methods have not yet been evaluated across different network environments. The results indicate that while the performance of the traditionally used methods does not fully transfer on different network environments, they do perform better than a random classifier.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
