A Continuous Learning Approach for Real-Time Network Intrusion Detection

被引:3
作者
Martina, Marcello Rinaldo [1 ]
Foresti, Gian Luca [1 ]
机构
[1] Univ Udine, Dept Math Comp Sci & Phys, Via Sci 206, I-33100 Udine, Italy
关键词
Machine learning; continuous learning; cybersecurity; intrusion detection; NEURAL-NETWORK; CLASSIFICATION;
D O I
10.1142/S012906572150060X
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Network intrusion detection is becoming a challenging task with cyberattacks that are becoming more and more sophisticated. Failing the prevention or detection of such intrusions might have serious consequences. Machine learning approaches try to recognize network connection patterns to classify unseen and known intrusions but also require periodic re-training to keep the performances at a high level. In this paper, a novel continuous learning intrusion detection system, called Soft-Forgetting Self-Organizing Incremental Neural Network (SF-SOINN), is introduced. SF-SOINN, besides providing continuous learning capabilities, is able to perform fast classification, is robust to noise, and it obtains good performances with respect to the existing approaches. The main characteristic of SF-SOINN is the ability to remove nodes from the neural network based on their utility estimate. SF-SOINN has been validated on the well-known NSL-KDD and CIC-IDS-2017 intrusion detection datasets as well as on some artificial data to show the classification capability on more general tasks.
引用
收藏
页数:22
相关论文
共 43 条
[1]   A novel SVM-kNN-PSO ensemble method for intrusion detection system [J].
Aburomman, Abdulla Amin ;
Reaz, Mamun Bin Ibne .
APPLIED SOFT COMPUTING, 2016, 38 :360-372
[2]  
Aggarwal CC, 2001, LECT NOTES COMPUT SC, V1973, P420
[3]   Enhanced probabilistic neural network with local decision circles: A robust classifier [J].
Ahmadlou, Mehran ;
Adeli, Hojjat .
INTEGRATED COMPUTER-AIDED ENGINEERING, 2010, 17 (03) :197-210
[4]  
Ahuja D.G.Kumar., 2015, INT J COMPUT APPL, V11, P11
[5]   A dynamic ensemble learning algorithm for neural networks [J].
Alam, Kazi Md Rokibul ;
Siddique, Nazmul ;
Adeli, Hojjat .
NEURAL COMPUTING & APPLICATIONS, 2020, 32 (12) :8675-8690
[6]  
Canadian Institute for Cybersecurity, CIC FLOW MET
[7]  
Canadian Institute for Cybersecurity, NSL KDD DAT
[8]  
Canadian Institute for Cybersecurity, 2017, Cicids 2017 Dataset
[9]  
Caraffini F, 2013, 2013 IEEE CONGRESS ON EVOLUTIONARY COMPUTATION (CEC), P1678
[10]  
Caraffini F, 2013, 2013 IEEE CONGRESS ON EVOLUTIONARY COMPUTATION (CEC), P1123