Abstract
The type and number of cyber-attacks on data networks have been increasing. As networks grow, the importance of Network Intrusion Detection Systems (NIDS) in monitoring cyber threats has also increased. One of the challenges in NIDS is the high number of alerts the systems generate, and the overwhelming effect that alerts have on security operations. To process alerts efficiently, NIDS can be designed to include Machine Learning (ML) capabilities. In the literature, various NIDS architectures that use ML approaches have been proposed. However, high false alarm rates continue to be challenges to most NID systems.
In this paper, we present a NIDS that uses ensemble ML in order to improve the performance of attack detection and to decrease the rate of false alarms. To this end, we combine four ensemble ML classifiers – (Random Forest, AdaBoost, XGBoost and Gradient boosting decision tree) using a soft voting scheme.
In this paper, we present a NIDS that uses ensemble ML in order to improve the performance of attack detection and to decrease the rate of false alarms. To this end, we combine four ensemble ML classifiers – (Random Forest, AdaBoost, XGBoost and Gradient boosting decision tree) using a soft voting scheme.
Original language | English |
---|---|
Title of host publication | Proc. 54th Int'l Carnahan Conference on Security Technology (ICCST) |
Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
Publication status | Published - 1 Oct 2021 |
Event | The 54th Annual International Carnahan Conference on Security Technology - Hatfield, United Kingdom Duration: 2 Sept 2020 → 4 Sept 2020 https://site.ieee.org/iccst/2020-hatfield-uk/ |
Conference
Conference | The 54th Annual International Carnahan Conference on Security Technology |
---|---|
Country/Territory | United Kingdom |
City | Hatfield |
Period | 2/09/20 → 4/09/20 |
Internet address |