Hybrid weight deep belief network algorithm for anomaly-based intrusion detection system

Maseer, Ziadoon Kamil (2022) Hybrid weight deep belief network algorithm for anomaly-based intrusion detection system. Doctoral thesis, Universiti Teknikal Malaysia Melaka.

[img] Text (24 Pages)
Hybrid weight deep belief network algorithm for anomaly-based intrusion detection system.pdf - Submitted Version
Download (795kB)
[img] Text (Full Text)
Hybrid weight deep belief network algorithm for anomaly-based intrusion detection system.pdf - Submitted Version
Restricted to Registered users only
Download (4MB)

Abstract

With an increasing number of recent services connected to the Internet, including cloud computing and Internet of Things systems, cyber-attacks have become more challenging. The deep learning approach plays a pertinent role in tracing new attacks in cybersecurity. Recently, researchers suggested a deep belief network (DBN) algorithm to construct and build a network intrusion detection system (NIDS) for detecting attacks that have not been seen before. However, the current DBN.NIDS model is still ineffective for large-scale real-world data due to some issues: 1) the pre-training of the DBN algorithm includes simple feature learning which does not work very well to extract important features from the attack data, 2) the classification task of the DBN algorithm is a poor detection for imbalanced class dataset and 3) the design of the DBN model could be weak and need to be continuously updated by modern definitions of abnormal to detect recent attacks. In this study, the Deep Belief Network algorithm was optimized and constructed to design an effective NIDS anomaly model. The optimized DBN algorithm, known as the HW-DBN algorithm, integrated through feature learning based on a Gaussian–Bernoulli Restricted Boltzmann Machine as well as classification task through a weight neuron network. The effectiveness of HW-DBN.NIDS was validated with real-world datasets that contained multiple attack types, complex data patterns, noise values, and imbalanced classes. A comparative analysis presented an HW-DBN.NIDS which was able to extract important features and detect the low frequency of modern attacks undetectable by other models. The results showed the proposed anomaly IDS model that outperformed the three models by achieving a higher recognition accuracy of 99.38%, 99.99%, and 1.00 for the Web, bot, and bot-IoT attacks in CICIDS2017 and CSE-CIC-IDS2018 dataset, respectively. In future, the HW-DBN algorithm can be proposed as an integrated deep Learning for the classification performance of attack detection models.

Item Type: Thesis (Doctoral)
Uncontrolled Keywords: Cybersecurity, Deep learning, Network intrusion detection system (NIDS)
Subjects: Q Science > Q Science (General)
Divisions: Library > Tesis > FTMK
Depositing User: MUHAMAD HAFEEZ ZAINUDIN
Date Deposited: 12 Nov 2024 10:35
Last Modified: 12 Nov 2024 10:35
URI: http://eprints.utem.edu.my/id/eprint/28241
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item