Investigating rarity in web attacks with ensemble learners

Zuech, Richard; Hancock, John; Khoshgoftaar, Taghi M.

doi:10.1186/s40537-021-00462-6

Cited by 7 publications

(2 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The predictions of an ensemble algorithm are computed at each iteration. CatBoost [41] is another high-performance gradient-boosting algorithm based on decision trees. Yandex created it, and many ML tasks showed it to be effective.…”

Section: Machine Learning Algorithmsmentioning

confidence: 99%

The development of a model for the threat detection system with the use of machine learning and neural network methods

Ussatova,

Zhumabekova,

Karyukin

et al. 2024

ijirss

View full text Add to dashboard Cite

This study examines the development of a model for the threat detection system with the use of machine learning and neural network methods. The fast development of Internet technologies has led to the appearance of many digital systems and platforms. However, despite the impressive technological progress, another side also emerged in the spread of a massive number of different cyber threats. Although various ways have been created to detect and prevent them, the threats are also developing and becoming more complex each year. Therefore, new system defense and data protection methods using machine and deep learning approaches have been proposed recently. The methods based on these approaches have proved to be especially effective in the wave of new Artificial Intelligence applications. In this paper, a threat detection system has been designed to disclose different kinds of threats while maintaining the security, confidentiality, and availability of the computer system. The development of machine learning models for detecting DDoS and man-in-the-middle attacks, Structured Query Language (SQL) injections, phishing, and malware was examined. The data scaling, feature selection, feature extraction, and classification steps were also thoroughly described. Naïve Bayes, Logistic Regression, Decision Tree, Random Forest, XGBoost, CatBoost, and Deep Neural Network algorithms were utilized for training the cyber threat detection models. The experimental results evaluated all the models using accuracy, precision, recall, and F1-score metrics. The best models achieved scores in the range of 0.90 to 1.00.

show abstract

Section: Machine Learning Algorithmsmentioning

confidence: 99%

The development of a model for the threat detection system with the use of machine learning and neural network methods

Ussatova,

Zhumabekova,

Karyukin

et al. 2024

ijirss

View full text Add to dashboard Cite

show abstract

“…ese new attacks can get past the static defenses that companies have already implemented. e fact that Americans spent more than $ 600 billion on e-commerce in one year raises serious questions about cyber security in today's world [3]. Security professionals struggle to safeguard this increasingly vital cyberspace [4,5].…”

Section: Introductionmentioning

confidence: 99%

Apache Spark and Deep Learning Models for High-Performance Network Intrusion Detection Using CSE-CIC-IDS2018

Hagar

Gawali

2022

Computational Intelligence and Neuroscience

View full text Add to dashboard Cite

Keeping computers secure is becoming challenging as networks grow and new network-based technologies emerge. Cybercriminals’ attack surface expands with the release of new internet-enabled products. As many cyberattacks affect businesses’ confidentiality, availability, and integrity, network intrusion detection systems (NIDS) show an essential role. Network-based intrusion detection uses datasets like CSE-CIC-IDS2018 to train prediction models. With fourteen types of attacks included, the latest big data set for intrusion detection is available to the public. This work proposes three models, two deep learning convolutional neural networks (CNN), long short-term memory (LSTM), and Apache Spark, to improve the detection of all types of attacks. To reduce the dimensionality, random forests (RF) was employed to select the important features; it gave 19 from 84 features. The dataset is imbalanced; thus, oversampling and undersampling techniques reduce the imbalance ratio. The Apache Spark model produced the best results across all 15 classes, with accuracy as high as 100% for all classes, as seen by the experiments’ findings. For the F1-score, Apache Spark showed the highest results with 1.00 for most classes. The findings of the three models showed outstanding results for multiclassification network intrusion detection.

show abstract