人工鱼群特征选择的网络入侵检测系统

刘景美; 闫义博

doi:10.19665/j.issn1001-2400.2023.04.013

您当前的位置：

首页 >

文章列表页 >

人工鱼群特征选择的网络入侵检测系统

网络空间安全专栏 | 更新时间：2023-10-18

- 人工鱼群特征选择的网络入侵检测系统
- 暂无标题
- 西安电子科技大学学报 2023年50卷第4期页码：132-138
- 作者机构：
  
  西安电子科技大学通信工程学院,陕西西安 710071
- 作者简介：
  
  [ "刘景美(1979—),女,副教授,E-mail:[email protected]" ]
  闫义博(1999—),女,西安电子科技大学硕士研究生,E-mail:[email protected]
- 基金信息：
  
  陕西省自然基金(2021JM-134)
- DOI：10.19665/j.issn1001-2400.2023.04.013
  中图分类号：
扫描看全文
刘景美, 闫义博. 人工鱼群特征选择的网络入侵检测系统[J]. 西安电子科技大学学报, 2023,50(4):132-138.
刘景美, 闫义博. 人工鱼群特征选择的网络入侵检测系统[J]. 西安电子科技大学学报, 2023,50(4):132-138. DOI： 10.19665/j.issn1001-2400.2023.04.013.

DOI：

摘要

入侵检测领域中,数据的冗余和无关特征不仅减缓了分类的过程,而且会妨碍分类器做出准确的决策,导致入侵检测系统性能下降。针对入侵检测高维数据集带来的系统准确率较低的问题,提出人工鱼群特征选择的网络入侵检测系统。首先对原始数据集预处理,对数据进行清洗并标准化;然后结合自适应参数变化和多目标优化算法,提出一种改进的多目标人工鱼群算法,通过动态优化搜索空间,提升搜索能力,选择最优的特征子集;最后提出一种基于遗传算法和CatBoost的改进多目标人工鱼群优化方法的入侵检测模型,对生成的多组特征子集输入CatBoost进行分类并进行特征评估,检验特征选择的有效性。通过在NSL-KDD数据集上验证,提出的特征选择算法使用17维特征得到约93.97%的准确率,在UNSW-NB15数据集上,算法使用24维特征得到约95.06%的准确率。仿真结果表明,所提算法在维度低的同时可获得高准确率,与现有特征选择方法相比具有一定优势。

Abstract

In the field of intrusion detection,redundancy and extraneous features not only slow down the classification process,but also prevent the classifier from making accurate decisions,resulting in intrusion detection system performance degradation.A network intrusion detection system based on artificial fish feature selection is proposed to address the problem of low system accuracy induced by high-dimensional data sets in intrusion detection.First,the original data set is preprocessed,with the data cleaned and standardized.Then,an improved multi-objective artificial fish swarm algorithm(AFSA) is presented by merging the adaptive parameter modifications and the multi-objective optimization algorithm.By dynamically optimizing the search space,the search ability is improved,and the optimal feature subset is selected.Finally,an intrusion detection model is established based on a genetic algorithm and CatBoost improved multi-objective artificial fish swarm optimization approach.The generated multi-feature subsets are classified by CatBoost for feature evaluation,and the effectiveness of feature selection is tested.The proposed feature selection approach employs 17-dimensional features to achieve an accuracy of 93.97% on the NSL-KDD dataset,while it uses 24-dimensional features to achieve an accuracy of 95.06% on the UNSW-NB15 dataset.Simulation results show that the proposed algorithm can achieve a high accuracy while having a low dimension,which has certain advantages compared with existing feature selection methods.

关键词

入侵检测特征选择人工鱼群多目标优化

Keywords

intrusion detection systemfeature selectionartificial fish swarm algorithmmulti-objective optimization

references

刘景美, 高源伯. 自适应分箱特征选择的快速网络入侵检测系统[J]. 西安电子科技大学学报, 2021, 48(1):176-182.

LIU Jingmei, GAO Yuanbo. Fast Network Intrusion Detection System Using Adaptive Binning Feature Selection[J]. Journal of Xidian University, 2021, 48(1):176-182.

NASIR M H, KHAN S A, KHAN M M, et al. Swarm Intelligence Inspired Intrusion Detection Systems—a Systematic Literature Review[J]. Computer Networks, 2022, 205:108708. DOI:10.1016/j.comnet.2021.108708http://doi.org/10.1016/j.comnet.2021.108708https://linkinghub.elsevier.com/retrieve/pii/S1389128621005673https://linkinghub.elsevier.com/retrieve/pii/S1389128621005673

ALAZZAM H, SHARIEH A, SABRI K E. A Feature Selection Algorithm for Intrusion Detection System Based on Pigeon Inspired Optimizer[J]. Expert Systems with Applications, 2020, 148:113249. DOI:10.1016/j.eswa.2020.113249http://doi.org/10.1016/j.eswa.2020.113249https://linkinghub.elsevier.com/retrieve/pii/S0957417420300749https://linkinghub.elsevier.com/retrieve/pii/S0957417420300749

HAJISALEM V, BABAIE S. A Hybrid Intrusion Detection System Based on ABC-AFS Algorithm for Misuse and Anomaly Detection[J]. Computer Networks, 2018, 136:37-50. DOI:10.1016/j.comnet.2018.02.028http://doi.org/10.1016/j.comnet.2018.02.028https://linkinghub.elsevier.com/retrieve/pii/S1389128618301014https://linkinghub.elsevier.com/retrieve/pii/S1389128618301014

ZHANG X, LIAN L, ZHU F. Parameter Fitting of Variogram Based on Hybrid Algorithm of Particle Swarm and Artificial Fish Swarm[J]. Future Generation Computer Systems, 2021, 116:265-274. DOI:10.1016/j.future.2020.09.026http://doi.org/10.1016/j.future.2020.09.026https://linkinghub.elsevier.com/retrieve/pii/S0167739X20320768https://linkinghub.elsevier.com/retrieve/pii/S0167739X20320768

AMBUSAIDI M A, HE X, NANDA P, et al. Building an Intrusion Detection System Using a Filter-Based Feature Selection Algorithm[J]. IEEE Transactions on Computers, 2016, 65(10):2986-2998. DOI:10.1109/TC.2016.2519914http://doi.org/10.1109/TC.2016.2519914http://ieeexplore.ieee.org/document/7387736/http://ieeexplore.ieee.org/document/7387736/

MOUSTAFA R, SLAY J. UNSW-NB15:A Comprehensive Data Set for Network Intrusion Detection Systems(UNSW-NB15 Network Data Set)[C]// 2015 Military Communications and Information Systems Conference(MilCIS).Piscataway:IEEE, 2015:1-6.

李晓磊. 一种新型的智能优化方法-人工鱼群算法[D]. 浙江: 浙江大学, 2003.

SHONE N, NGOC T N, PHAI V D, et al. A Deep Learning Approach to Network Intrusion Detection[J]. IEEE Transactions on Emerging Topics in Computational Intelligence, 2018, 2(1):41-50. DOI:10.1109/TETCI.2017.2772792http://doi.org/10.1109/TETCI.2017.2772792http://ieeexplore.ieee.org/document/8264962/http://ieeexplore.ieee.org/document/8264962/

DE LA HOZ E, DE LA HOZ E, ORTIZ A, et al. Feature Selection by Multi-Objective Optimisation:Application to Network Anomaly Detection by Hierarchical Self-Organising Maps[J]. Knowledge-Based Systems, 2014, 71:322-338. DOI:10.1016/j.knosys.2014.08.013http://doi.org/10.1016/j.knosys.2014.08.013https://linkinghub.elsevier.com/retrieve/pii/S0950705114002950https://linkinghub.elsevier.com/retrieve/pii/S0950705114002950

DE LA HOZ E, ORTIZ A, ORTEGA J, et al. Network Anomaly Classification by Support Vector Classifiers Ensemble and Non-Linear Projection Techniques[C]// International Conference on Hybrid Artificial Intelligence Systems.Heidelberg:Springer, 2013:103-111.

ALZAQEBAH A, ALJARAH I, AL-KADI O, et al. A Modified Grey Wolf Optimization Algorithm for an Intrusion Detection System[J]. Mathematics, 2022, 10(6):999. DOI:10.3390/math10060999http://doi.org/10.3390/math10060999https://www.mdpi.com/2227-7390/10/6/999https://www.mdpi.com/2227-7390/10/6/999

浏览量

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

用于精确干扰波形设计的高效流形算法

结合协同训练的多视图加密恶意流量检测方法

特征融合实现脑电信号情感分析

改进多目标蚁狮算法的WSNs节点部署策略

双通道决策信息融合下的微表情识别