A Network Intrusion Detection System Using Ensemble Machine Learning

Aklil Zenebe Kiflay, Athanasios Tsokanos, Raimund Kirner

Research output: Chapter in Book/Report/Conference proceedingConference contribution

165 Downloads (Pure)

Abstract

The type and number of cyber-attacks on data networks have been increasing. As networks grow, the importance of Network Intrusion Detection Systems (NIDS) in monitoring cyber threats has also increased. One of the challenges in NIDS is the high number of alerts the systems generate, and the overwhelming effect that alerts have on security operations. To process alerts efficiently, NIDS can be designed to include Machine Learning (ML) capabilities. In the literature, various NIDS architectures that use ML approaches have been proposed. However, high false alarm rates continue to be challenges to most NID systems.
In this paper, we present a NIDS that uses ensemble ML in order to improve the performance of attack detection and to decrease the rate of false alarms. To this end, we combine four ensemble ML classifiers – (Random Forest, AdaBoost, XGBoost and Gradient boosting decision tree) using a soft voting scheme.
Original languageEnglish
Title of host publicationProc. 54th Int'l Carnahan Conference on Security Technology (ICCST)
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Publication statusPublished - 1 Oct 2021
EventThe 54th Annual International Carnahan Conference on Security Technology - Hatfield, United Kingdom
Duration: 2 Sept 20204 Sept 2020
https://site.ieee.org/iccst/2020-hatfield-uk/

Conference

ConferenceThe 54th Annual International Carnahan Conference on Security Technology
Country/TerritoryUnited Kingdom
CityHatfield
Period2/09/204/09/20
Internet address

Fingerprint

Dive into the research topics of 'A Network Intrusion Detection System Using Ensemble Machine Learning'. Together they form a unique fingerprint.

Cite this