Overhead Reduction Technique for Software-Defined Network Based Intrusion Detection Systems

Janabi, Ahmed H.; Kanakis, Triantafyllos; Johnson, Mark

doi:10.1109/access.2022.3184722

Cited by 10 publications

(4 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To address the challenge of detecting intrusion in SDNs, Janabi et al [31] propose a technique to enhance the performance of IDSs within SDNs, particularly catering to the demands of large enterprise networks. Their method minimizes the overhead during IDS operations through a two-stage process: optimized feature selection and extraction.…”

Section: Discussion and Open Issuesmentioning

confidence: 99%

On Feature Selection Techniques for Detecting DoS Attacks with a Multi-class Classifier

Mundstock,

Santo,

Silveira

et al. 2024

Preprint

View full text Add to dashboard Cite

In a hyperconnected society, computer networks play a pivotal role in all activities that permeate our daily lives. In the context of smart cities, theses networks play a pivotal role in enhancing urban efficiency and sustainability. The continuous flow of packets in these networks poses security challenges, from personal data leakage to service unavailability. Anomaly-based methods are commonly used to detect network attacks. In this context, Software-Defined Networking (SDN) emerges as a solution for anomaly detection in network traffic, facilitating comprehensive, real-time analyses and dynamic adaptation to changes. This study aims to present a systematic review of feature selection techniques and evaluate the effectiveness of attribute selection with a multi-class classifier in network anomaly detection. The objective of this paper is to inspire future research and identify trade-offs among these techniques for detecting Denial of Service (DoS) attacks. Based on the findings, the analysis of the entire dataset yields superior results in terms of precision (99%), but using the output of OneR, although resulting in a slight loss of precision compared to the complete dataset, presents the highest precision among other studied techniques, indicating a trade-off between precision and processing time efficiency.

show abstract

Section: Discussion and Open Issuesmentioning

confidence: 99%

On Feature Selection Techniques for Detecting DoS Attacks with a Multi-class Classifier

Mundstock,

Santo,

Silveira

et al. 2024

Preprint

View full text Add to dashboard Cite

show abstract

“…When it comes to fending off stepping stone attacks, connection chain difficulties are seen as being among the most important components. The author [35] presented a model that determines the stepping stone attack by estimating the length of the connecting chain as a starting point for the calculation.…”

Section: Literature Surveymentioning

confidence: 99%

A Fast and Effective Method for Intrusion Detection using Multi-Layered Deep Learning Networks

Srikrishnan¹,

Raaza²,

B³

et al. 2022

IJACSA

View full text Add to dashboard Cite

The practise of recognising unauthorised abnormal actions on computer systems is referred to as intrusion detection. The primary goal of an Intrusion Detection System (IDS) is to identify user behaviours as normal or abnormal based on the data they communicate. Firewalls, data encryption, and authentication techniques were all employed in traditional security systems. Current intrusion scenarios, on the other hand, are very complex and capable of readily breaching the security measures provided by previous protection systems. However, current intrusion scenarios are highly sophisticated and are capable of easily breaking the security mechanisms imposed by the traditional protection systems. Detecting intrusions is a challenging aspect especially in networked environments, as the system designed for such a scenario should be able to handle the huge volume and velocity associated with the domain. This research presents three models, APID (Adaptive Parallelized Intrusion Detection), HBM (Heterogeneous Bagging Model) and MLDN (Multi Layered Deep learning Network) that can be used for fast and efficient detection of intrusions in networked environments. The deep learning model has been constructed using the Keras library. The training data is preprocessed and segregated to fit the processing architecture of neural networks. The network is constructed with multiple layers and the other required parameters for the network are set in accordance with the input data. The trained model is validated using the validation data that has been specifically segregated for this purpose.

show abstract

“…IDS based on cloud networks employ anomaly-based techniques to protect the cloud-based applications [1]. In network security, there are two common detection techniques for NIDS, anomaly-based detection, and signature-based detection [2]. An anomaly-based IDS analyzes the network traffic and correlates it to a created baseline for unknown or known attacks, where a signature-based IDS is allowed to be employed while the attack patterns are established and predetermined [3,4].…”

Section: Introductionmentioning

confidence: 99%

Healthcare Intrusion Detection using Hybrid Correlation-based Feature Selection-Bat Optimization Algorithm with Convolutional Neural Network

Bella,

Vasundra

2024

IJACSA

View full text Add to dashboard Cite

Cloud computing is popular among users in various areas such as healthcare, banking, and education due to its low-cost services alongside increased reliability and efficiency. But, security is a significant problem in cloud-based systems due to the cloud services being accessed via the Internet by a variety of users. Therefore, the patient's health information needs to be kept confidential, secure, and accurate. Moreover, any change in actual patient data potentially results in errors during the diagnosis and treatment. In this research, the hybrid Correlation-based Feature Selection-Bat Optimization Algorithm (HCFS-BOA) based on the Convolutional Neural Network (CNN) model is proposed for intrusion detection to secure the entire network in the healthcare system. Initially, the data is obtained from the CIC-IDS2017, NSL-KDD datasets, after which min-max normalization is performed to normalize the acquired data. HCFS-BOA is employed in feature selection to examine the appropriate features that not only have significant correlations with the target variable, but also contribute to the optimal performance of intrusion detection in the healthcare system. Finally, CNN classification is performed to identify and classify intrusion detection accurately and effectively in the healthcare system. The existing methods namely, SafetyMed, Hybrid Intrusion Detection System (HIDS), and Blockchain-orchestrated Deep learning method for Secure Data Transmission in IoTenabled healthcare systems (BDSDT) are employed to evaluate the efficacy of HCFS-BOA-based CNN. The proposed HCFS-BOA-based CNN achieves a better accuracy of 99.45% when compared with the existing methods: SafetyMed, HIDS, and BDSDT.

show abstract

Overhead Reduction Technique for Software-Defined Network Based Intrusion Detection Systems

Cited by 10 publications

References 32 publications

On Feature Selection Techniques for Detecting DoS Attacks with a Multi-class Classifier

On Feature Selection Techniques for Detecting DoS Attacks with a Multi-class Classifier

A Fast and Effective Method for Intrusion Detection using Multi-Layered Deep Learning Networks

Healthcare Intrusion Detection using Hybrid Correlation-based Feature Selection-Bat Optimization Algorithm with Convolutional Neural Network

Contact Info

Product

Resources

About