Network Intrusion Detection through Stacking Dilated Convolutional Autoencoders

Yu, Yang; Long, Jun; Cai, Zixing

doi:10.1155/2017/4184196

Cited by 133 publications

(54 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Such works within the greater domain of cybersecurity have been published more recently, yet they are dissimilar to our approach, unrelated to the IoT, and often not directly connected to botnets. For instance, [15], [16] and [18] applied shallow autoencoders for preliminary feature learning and dimensionality reduction, followed by Random Forest, Deep Belief Networks, and Softmax, respectively for classification and fine-tuning. Although autoencoders were extended for outlier detection in [17], they still required security analysts to actively label data for subsequent supervised learning.…”

Section: Related Workmentioning

confidence: 99%

N-BaIoT—Network-Based Detection of IoT Botnet Attacks Using Deep Autoencoders

Meidan

Bohadana

Mathov

et al. 2018

IEEE Pervasive Comput.

954

511

View full text Add to dashboard Cite

The proliferation of IoT devices which can be more easily compromised than desktop computers has led to an increase in the occurrence of IoT-based botnet attacks. In order to mitigate this new threat there is a need to develop new methods for detecting attacks launched from compromised IoT devices and differentiate between hour and millisecond long IoT-based attacks. In this paper we propose and empirically evaluate a novel network-based anomaly detection method which extracts behavior snapshots of the network and uses deep autoencoders to detect anomalous network traffic emanating from compromised IoT devices. To evaluate our method, we infected nine commercial IoT devices in our lab with two of the most widely known IoT-based botnets, Mirai and BASHLITE. Our evaluation results demonstrated our proposed method's ability to accurately and instantly detect the attacks as they were being launched from the compromised IoT devices which were part of a botnet.

show abstract

Section: Related Workmentioning

confidence: 99%

N-BaIoT—Network-Based Detection of IoT Botnet Attacks Using Deep Autoencoders

Meidan

Bohadana

Mathov

et al. 2018

IEEE Pervasive Comput.

954

511

View full text Add to dashboard Cite

show abstract

“…Extracting payload features with unsupervised learning is also an effective detection method. Yu et al [45] utilized a convolutional autoencoder to extract payload features and conducted experiments on the CTU-UNB dataset. This dataset includes the raw packets of 8 attack types.…”

Section: Payload Analysis-based Detectionmentioning

confidence: 99%

Machine Learning and Deep Learning Methods for Intrusion Detection Systems: A Survey

2019

View full text Add to dashboard Cite

Networks play important roles in modern life, and cyber security has become a vital research area. An intrusion detection system (IDS) which is an important cyber security technique, monitors the state of software and hardware running in the network. Despite decades of development, existing IDSs still face challenges in improving the detection accuracy, reducing the false alarm rate and detecting unknown attacks. To solve the above problems, many researchers have focused on developing IDSs that capitalize on machine learning methods. Machine learning methods can automatically discover the essential differences between normal data and abnormal data with high accuracy. In addition, machine learning methods have strong generalizability, so they are also able to detect unknown attacks. Deep learning is a branch of machine learning, whose performance is remarkable and has become a research hotspot. This survey proposes a taxonomy of IDS that takes data objects as the main dimension to classify and summarize machine learning-based and deep learning-based IDS literature. We believe that this type of taxonomy framework is fit for cyber security researchers. The survey first clarifies the concept and taxonomy of IDSs. Then, the machine learning algorithms frequently used in IDSs, metrics, and benchmark datasets are introduced. Next, combined with the representative literature, we take the proposed taxonomic system as a baseline and explain how to solve key IDS issues with machine learning and deep learning techniques. Finally, challenges and future developments are discussed by reviewing recent representative studies.

show abstract

“…Yu et al [150] developed a network intrusion detection algorithm using dilated convolutional autoencoders (DCAEs) to identify normal and malicious traffic. Dilated convolutions are similar to regular convolutions, but there are gaps in between the applications of the kernel.…”

Section: Network Intrusion Detectionmentioning

confidence: 99%

A Survey of Deep Learning Methods for Cyber Security

et al. 2019

View full text Add to dashboard Cite

This survey paper describes a literature review of deep learning (DL) methods for cyber security applications. A short tutorial-style description of each DL method is provided, including deep autoencoders, restricted Boltzmann machines, recurrent neural networks, generative adversarial networks, and several others. Then we discuss how each of the DL methods is used for security applications. We cover a broad array of attack types including malware, spam, insider threats, network intrusions, false data injection, and malicious domain names used by botnets.

show abstract

Network Intrusion Detection through Stacking Dilated Convolutional Autoencoders

Cited by 133 publications

References 13 publications

N-BaIoT—Network-Based Detection of IoT Botnet Attacks Using Deep Autoencoders

N-BaIoT—Network-Based Detection of IoT Botnet Attacks Using Deep Autoencoders

Machine Learning and Deep Learning Methods for Intrusion Detection Systems: A Survey

A Survey of Deep Learning Methods for Cyber Security

Contact Info

Product

Resources

About