Research Connect

TL;DR

The concept of IDS is clarified and the taxonomy based on the notable ML and DL techniques adopted in designing network‐based IDS (NIDS) systems is provided, which highlights various research challenges and provided the future scope for the research in improving ML andDL‐based NIDS.

Abstract

The rapid advances in the internet and communication fields have resulted in a huge increase in the network size and the corresponding data. As a result, many novel attacks are being generated and have posed challenges for network security to accurately detect intrusions. Furthermore, the presence of the intruders with the aim to launch various attacks within the network cannot be ignored. An intrusion detection system (IDS) is one such tool that prevents the network from possible intrusions by inspecting the network traffic, to ensure its confidentiality, integrity, and availability. Despite enormous efforts by the researchers, IDS still faces challenges in improving detection accuracy while reducing false alarm rates and in detecting novel intrusions. Recently, machine learning (ML) and deep learning (DL)‐based IDS systems are being deployed as potential solutions to detect intrusions across the network in an efficient manner. This article first clarifies the concept of IDS and then provides the taxonomy based on the notable ML and DL techniques adopted in designing network‐based IDS (NIDS) systems. A comprehensive review of the recent NIDS‐based articles is provided by discussing the strengths and limitations of the proposed solutions. Then, recent trends and advancements of ML and DL‐based NIDS are provided in terms of the proposed methodology, evaluation metrics, and dataset selection. Using the shortcomings of the proposed methods, we highlighted various research challenges and provided the future scope for the research in improving ML and DL‐based NIDS.

Authors

Zeeshan Ahmad

1 Paper

A. Khan

1 Paper

W. Cheah

1 Paper

TL;DR

Abstract

Authors

References150 items

Machine Learning and Deep Learning Methods for Cybersecurity

UNSW-NB15: a comprehensive data set for network intrusion detection systems (UNSW-NB15 network data set)

A detailed analysis of the KDD CUP 99 data set

An Optimization Method for Intrusion Detection Classification Model Based on Deep Belief Network

A Practical Guide to Training Restricted Boltzmann Machines

Deep learning applications and challenges in big data analytics

A Fast Learning Algorithm for Deep Belief Nets

Deep Learning

Long Short-Term Memory

SMOTE: Synthetic Minority Over-sampling Technique

Learning

Extreme learning machine: Theory and applications

Machine Learning and Deep Learning Methods for Intrusion Detection Systems: A Survey

Deep Learning Approach for Intelligent Intrusion Detection System

A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection

Toward Generating a New Intrusion Detection Dataset and Intrusion Traffic Characterization

Explaining and Harnessing Adversarial Examples

Internet of Things: A survey on machine learning-based intrusion detection approaches

A Deep Learning Approach for Intrusion Detection Using Recurrent Neural Networks

A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection

Improving deep neural networks for LVCSR using rectified linear units and dropout

An Intrusion Detection Model Based on Feature Reduction and Convolutional Neural Networks

Introducing Deep Learning Self-Adaptive Misuse Network Intrusion Detection Systems

Deep Learning Approach Combining Sparse Autoencoder With SVM for Network Intrusion Detection

An Intrusion Detection System Using a Deep Neural Network With Gated Recurrent Units

Deep Learning-Based Intrusion Detection With Adversaries

A deep auto-encoder based approach for intrusion detection system

A Deep Learning Approach to Network Intrusion Detection

Taxonomy and Survey of Collaborative Intrusion Detection

Distributed Abnormal Behavior Detection Approach Based on Deep Belief Network and Ensemble SVM Using Spark

Performing systematic literature reviews in software engineering

Empirical Evaluation of Gated Recurrent Neural Networks on Sequence Modeling

Enhanced Network Anomaly Detection Based on Deep Neural Networks

Toward an Online Anomaly Intrusion Detection System Based on Deep Learning

Speech recognition with deep recurrent neural networks

The Limitations of Deep Learning in Adversarial Settings

Towards Deep Neural Network Architectures Robust to Adversarial Examples

Analysis of security and energy efficiency for shortest route discovery in low‐energy adaptive clustering hierarchy protocol using Levenberg‐Marquardt neural network and gated recurrent unit for intrusion detection system

Simulation of watchdog placement for cooperative anomaly detection in Bluetooth Mesh Intrusion Detection System

Analysis of anomaly detection method for Internet of things based on deep learning

MARINE: Man-in-the-Middle Attack Resistant Trust Model in Connected Vehicles

Multi-Channel Deep Feature Learning for Intrusion Detection

An Intrusion Detection Method Using Few-Shot Learning

DL-IDS: a deep learning-based intrusion detection framework for securing IoT

A Game-Theoretic Approach for Enhancing Security and Data Trustworthiness in IoT Applications

An Energy-Efficient and Secure Routing Protocol for Intrusion Avoidance in IoT-Based WSN

Cyber Security: The Lifeline of Information and Communication Technology

Employing Game Theory and TDMA Protocol to Enhance Security and Manage Power Consumption in WSNs-Based Cognitive Radio

Towards a trusted unmanned aerial system using blockchain for the protection of critical infrastructure

A Multiple-Layer Representation Learning Model for Network-Based Attack Detection

Survey of intrusion detection systems: techniques, datasets and challenges

Machine Learning-Based Delay-Aware UAV Detection and Operation Mode Identification Over Encrypted Wi-Fi Traffic

The Rising Role of Big Data Analytics and IoT in Disaster Management: Recent Advances, Taxonomy and Prospects

MSML: A Novel Multilevel Semi-Supervised Machine Learning Framework for Intrusion Detection System

Blockchain in Internet-of-Things: Architecture, Applications and Research Directions

Developing a Network Attack Detection System Using Deep Learning

Features Dimensionality Reduction Approaches for Machine Learning Based Network Intrusion Detection

Performance Analysis of ANN and Naive Bayes Classification Algorithm for Data Classification

PiNcH: An effective, efficient, and robust solution to drone detection via network traffic analysis

Network intrusion detection algorithm based on deep neural network

A novel ensemble method for k-nearest neighbor

Analyzing Machine Learning Workloads Using a Detailed GPU Simulator

A Survey of Intrusion Detection Models based on NSL-KDD Data Set

Evolving Artificial Neural Networks Using Opposition Based Particle Swarm Optimization Neural Network for Data Classification

Enhanced transductive support vector machine classification with grey wolf optimizer cuckoo search optimization for intrusion detection system

Machine Learning Algorithms for Network Intrusion Detection

Intrusion Detection in the Era of IoT: Building Trust via Traffic Filtering and Sampling

Effective Intrusion Detection System Using XGBoost

An intrusion detection system based on combining probability predictions of a tree of classifiers

Deep Learning Method for Denial of Service Attack Detection Based on Restricted Boltzmann Machine

An Ensemble Method based on Selection Using Bat Algorithm for Intrusion Detection

A New Intrusion Detection System Based on Fast Learning Network and Particle Swarm Optimization

An Empirical Evaluation of Deep Learning for Network Anomaly Detection

Support Vector Machine for Network Intrusion and Cyber-Attack Detection

Internet-of-Things-Based Smart Cities: Recent Advances and Challenges

Using repeated game for maximizing high priority data trustworthiness in Wireless Sensor Networks