TY - GEN
T1 - Dimensionality reduction for network anomalies detection : a deep learning approach
AU - Dawoud, Ahmed
AU - Shahristani, Seyed
AU - Raun, Chun
PY - 2019
Y1 - 2019
N2 - Cyber threats are a severed challenge in current communications networks. Several security measures were introduced to at different network layers to enhance security. One of the common networking security solutions is intrusion detection and prevention systems, with more focus on detecting the attacks. Various approaches are being used in network threat detection, for instance, signature-based and anomalies detection methods. Signature-based depends on a database of predefined attacks signature, in operation, the systems compare the traffic against the signature, if a match occurs, then an attack is identified. This approach cannot detect attacks that do not have a signature in the database. The anomalies detection approach utilizing various approaches to define the threats, for instance, statistical, and machine learning algorithms. Several machine learning algorithms had been used for network anomalies detection. A major common deficiency was poor accuracy, which kept the approach not industrially applicable. In this paper, we propose a framework for network anomalies detection. The proposed framework showed improvement in detection accuracy. The framework adopts semi-unsupervised algorithms for novelty detection to tackle the rapid development in the cyber security attacks. The framework embraces the unsupervised deep learning in more elegant technique, where it dramatically reduces the features from the first phase.
AB - Cyber threats are a severed challenge in current communications networks. Several security measures were introduced to at different network layers to enhance security. One of the common networking security solutions is intrusion detection and prevention systems, with more focus on detecting the attacks. Various approaches are being used in network threat detection, for instance, signature-based and anomalies detection methods. Signature-based depends on a database of predefined attacks signature, in operation, the systems compare the traffic against the signature, if a match occurs, then an attack is identified. This approach cannot detect attacks that do not have a signature in the database. The anomalies detection approach utilizing various approaches to define the threats, for instance, statistical, and machine learning algorithms. Several machine learning algorithms had been used for network anomalies detection. A major common deficiency was poor accuracy, which kept the approach not industrially applicable. In this paper, we propose a framework for network anomalies detection. The proposed framework showed improvement in detection accuracy. The framework adopts semi-unsupervised algorithms for novelty detection to tackle the rapid development in the cyber security attacks. The framework embraces the unsupervised deep learning in more elegant technique, where it dramatically reduces the features from the first phase.
KW - anomaly detection (computer security)
KW - computer security
KW - machine learning
KW - neural networks (computer science)
UR - http://handle.westernsydney.edu.au:8081/1959.7/uws:51664
M3 - Conference Paper
SN - 9783030150341
SP - 957
EP - 965
BT - Web, Artificial Intelligence and Network Applications: Proceedings of the Workshops of the 33rd International Conference on Advanced Information Networking and Applications (WAINA-2019), Matsue, Japan, 27-29 March 2019
PB - Springer Nature
T2 - International Conference on Advanced Information Networking and Applications
Y2 - 27 March 2019
ER -