Thirimanne2022_Article_DeepNeuralNetworkBasedReal-Tim.pdf (1.12 MB)
Download file

Deep neural network based real‑time intrusion detection system

Download (1.12 MB)
journal contribution
posted on 18.03.2022, 15:06 authored by Sharuka Promodya Thirimanne, Lasitha Jayawardana, Lasith Yasakethu, Pushpika Liyanaarachch, Chaminda Hewage
In recent years, due to the rapid growth in network technology, numerous types of intrusions have been uncovered that differ from the existing ones, and the conventional firewalls with specific rule sets and policies are incapable of identifying those intrusions in real-time. Therefore, that demands the requirement of a real-time intrusion detection system (RT-IDS). The ultimate purpose of this research is to construct an RT-IDS capable of identifying intrusions by analysing the inbound and outbound network data in real-time. The proposed system consists of a deep neural network (DNN) trained using 28 features of the NSL-KDD dataset. In addition, it contains the machine learning (ML) pipeline with sequential components for categorical data encoding and feature scaling, which is used before transmitting the real-time data to the trained DNN model to make predictions. Moreover, a real-time feature extractor, which is a C++ program that sniffs data from the real-time network traffic and derives relevant data related to the features of the NSL-KDD dataset using the sniffed data, is deployed between the gateway router and the local area network (LAN). Together with the trained DNN model, the ML pipeline is hosted in a server that can be accessed via a representational state transfer application programming interface (REST API). The DNN has revealed outstanding testing performance results achieving 81%, 96%, 70% and 81% for accuracy, precision, recall and f1-score accordingly. This research comprises a comprehensive technical explanation concerning the implementation and functionality of the complete system. Moreover, leveraging the extensive explanations provided in this paper, advanced IDSs capable of identifying modern intrusions can be constructed.

History

Published in

SN Computer Science

Publisher

Springer

Version

VoR (Version of Record)

Citation

Thirimanne, S.P., Jayawardana, L., Yasakethu, L., Liyanaarachchi, P. and Hewage, C. (2022) 'Deep Neural Network Based Real-Time Intrusion Detection System', SN Computer Science, 3(2), pp.1-12.

Electronic ISSN

2661-8907

Cardiff Met Affiliation

  • Cardiff School of Technologies

Cardiff Met Authors

Chaminda Hewage

Copyright Holder

© The Authors

Language

en