Menna Gamal , Mohamed Elhamahmy , Sanaa Taha , Hesham Elmahdy
{"title":"利用 LSTM-RNN 改进入侵检测,保护无人机网络","authors":"Menna Gamal , Mohamed Elhamahmy , Sanaa Taha , Hesham Elmahdy","doi":"10.1016/j.eij.2024.100501","DOIUrl":null,"url":null,"abstract":"<div><p>The expanding use of Unmanned Aerial Vehicle (UAVs)/drones has been noticeable in recent years. Drones have several uses in a wide range of industries, including the military, delivery, agricultural, and surveillance. This led to a visible increase in malicious activities targeting drones’ network. Consequently, it has become imperative to develop intrusion detection systems. The network intrusion detection system (NIDS) uses deep learning to identify network anomalies. In this paper, a new approach is proposed to enhance IDS in drone communications. The proposed model utilizes the Recurrent Neural Network (RNN) with a Long Short-Term Memory Network (LSTM) combined with pre-processing algorithms. Simulating real network traffic was necessary to do benchmark datasets to evaluate the IDS performance. Due to the artificial part in datasets, there is unbalancing between the normal and attack traffic. Training models on high-dimensional datasets with redundant features can be computationally expensive, need more storage, and lead to low performance. The cleaning of the dataset is accompanied by the most effective pre-processing techniques. SMOTE for unbalancing, one-hot encoding, and min–max scaling techniques are used to mitigate the dataset issues. The model is evaluated using the most up-to-date version of the dataset CICIDS2017 (13 May 2023). The model successfully achieves 99.84 % classification accuracy, 99.84 % F1-score, 99.99 % Precision, and 99.70 % recall. The proposed model outperformed the Naïve Bayes and five other legacy protocols in accuracy and False Positive rate.</p></div>","PeriodicalId":56010,"journal":{"name":"Egyptian Informatics Journal","volume":null,"pages":null},"PeriodicalIF":5.0000,"publicationDate":"2024-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S1110866524000641/pdfft?md5=cf102b39e8cb9e5585b6bed51ef13f17&pid=1-s2.0-S1110866524000641-main.pdf","citationCount":"0","resultStr":"{\"title\":\"Improving intrusion detection using LSTM-RNN to protect drones’ networks\",\"authors\":\"Menna Gamal , Mohamed Elhamahmy , Sanaa Taha , Hesham Elmahdy\",\"doi\":\"10.1016/j.eij.2024.100501\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><p>The expanding use of Unmanned Aerial Vehicle (UAVs)/drones has been noticeable in recent years. Drones have several uses in a wide range of industries, including the military, delivery, agricultural, and surveillance. This led to a visible increase in malicious activities targeting drones’ network. Consequently, it has become imperative to develop intrusion detection systems. The network intrusion detection system (NIDS) uses deep learning to identify network anomalies. In this paper, a new approach is proposed to enhance IDS in drone communications. The proposed model utilizes the Recurrent Neural Network (RNN) with a Long Short-Term Memory Network (LSTM) combined with pre-processing algorithms. Simulating real network traffic was necessary to do benchmark datasets to evaluate the IDS performance. Due to the artificial part in datasets, there is unbalancing between the normal and attack traffic. Training models on high-dimensional datasets with redundant features can be computationally expensive, need more storage, and lead to low performance. The cleaning of the dataset is accompanied by the most effective pre-processing techniques. SMOTE for unbalancing, one-hot encoding, and min–max scaling techniques are used to mitigate the dataset issues. The model is evaluated using the most up-to-date version of the dataset CICIDS2017 (13 May 2023). The model successfully achieves 99.84 % classification accuracy, 99.84 % F1-score, 99.99 % Precision, and 99.70 % recall. The proposed model outperformed the Naïve Bayes and five other legacy protocols in accuracy and False Positive rate.</p></div>\",\"PeriodicalId\":56010,\"journal\":{\"name\":\"Egyptian Informatics Journal\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":5.0000,\"publicationDate\":\"2024-07-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://www.sciencedirect.com/science/article/pii/S1110866524000641/pdfft?md5=cf102b39e8cb9e5585b6bed51ef13f17&pid=1-s2.0-S1110866524000641-main.pdf\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Egyptian Informatics Journal\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S1110866524000641\",\"RegionNum\":3,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Egyptian Informatics Journal","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1110866524000641","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE","Score":null,"Total":0}
Improving intrusion detection using LSTM-RNN to protect drones’ networks
The expanding use of Unmanned Aerial Vehicle (UAVs)/drones has been noticeable in recent years. Drones have several uses in a wide range of industries, including the military, delivery, agricultural, and surveillance. This led to a visible increase in malicious activities targeting drones’ network. Consequently, it has become imperative to develop intrusion detection systems. The network intrusion detection system (NIDS) uses deep learning to identify network anomalies. In this paper, a new approach is proposed to enhance IDS in drone communications. The proposed model utilizes the Recurrent Neural Network (RNN) with a Long Short-Term Memory Network (LSTM) combined with pre-processing algorithms. Simulating real network traffic was necessary to do benchmark datasets to evaluate the IDS performance. Due to the artificial part in datasets, there is unbalancing between the normal and attack traffic. Training models on high-dimensional datasets with redundant features can be computationally expensive, need more storage, and lead to low performance. The cleaning of the dataset is accompanied by the most effective pre-processing techniques. SMOTE for unbalancing, one-hot encoding, and min–max scaling techniques are used to mitigate the dataset issues. The model is evaluated using the most up-to-date version of the dataset CICIDS2017 (13 May 2023). The model successfully achieves 99.84 % classification accuracy, 99.84 % F1-score, 99.99 % Precision, and 99.70 % recall. The proposed model outperformed the Naïve Bayes and five other legacy protocols in accuracy and False Positive rate.
期刊介绍:
The Egyptian Informatics Journal is published by the Faculty of Computers and Artificial Intelligence, Cairo University. This Journal provides a forum for the state-of-the-art research and development in the fields of computing, including computer sciences, information technologies, information systems, operations research and decision support. Innovative and not-previously-published work in subjects covered by the Journal is encouraged to be submitted, whether from academic, research or commercial sources.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
