University of Hertfordshire

By the same authors

A Network Intrusion Detection System Using Ensemble Machine Learning

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Documents

View graph of relations
Original languageEnglish
Title of host publicationProc. 54th Int'l Carnahan Conference on Security Technology (ICCST)
PublisherIEEE
Publication statusPublished - 1 Oct 2021
EventThe 54th Annual International Carnahan Conference on Security Technology - Hatfield, United Kingdom
Duration: 2 Sep 20204 Sep 2020
https://site.ieee.org/iccst/2020-hatfield-uk/

Conference

ConferenceThe 54th Annual International Carnahan Conference on Security Technology
Country/TerritoryUnited Kingdom
CityHatfield
Period2/09/204/09/20
Internet address

Abstract

The type and number of cyber-attacks on data networks have been increasing. As networks grow, the importance of Network Intrusion Detection Systems (NIDS) in monitoring cyber threats has also increased. One of the challenges in NIDS is the high number of alerts the systems generate, and the overwhelming effect that alerts have on security operations. To process alerts efficiently, NIDS can be designed to include Machine Learning (ML) capabilities. In the literature, various NIDS architectures that use ML approaches have been proposed. However, high false alarm rates continue to be challenges to most NID systems.
In this paper, we present a NIDS that uses ensemble ML in order to improve the performance of attack detection and to decrease the rate of false alarms. To this end, we combine four ensemble ML classifiers – (Random Forest, AdaBoost, XGBoost and Gradient boosting decision tree) using a soft voting scheme.

ID: 26573641