TL;DR
This paper introduces an autoencoder-based deep learning model for zero-day attack detection in intrusion detection systems, demonstrating high accuracy and improved recall over traditional methods on benchmark datasets.
Contribution
The paper presents a novel autoencoder approach for zero-day attack detection, outperforming existing outlier-based methods like One-Class SVM in accuracy and recall.
Findings
Autoencoders achieve 89-99% detection accuracy on NSL-KDD.
Autoencoders achieve 75-98% detection accuracy on CICIDS2017.
Trade-off observed between recall and fallout in detection performance.
Abstract
Machine Learning (ML) and Deep Learning (DL) have been used for building Intrusion Detection Systems (IDS). The increase in both the number and sheer variety of new cyber-attacks poses a tremendous challenge for IDS solutions that rely on a database of historical attack signatures. Therefore, the industrial pull for robust IDSs that are capable of flagging zero-day attacks is growing. Current outlier-based zero-day detection research suffers from high false-negative rates, thus limiting their practical use and performance. This paper proposes an autoencoder implementation for detecting zero-day attacks. The aim is to build an IDS model with high recall while keeping the miss rate (false-negatives) to an acceptable minimum. Two well-known IDS datasets are used for evaluation-CICIDS2017 and NSL-KDD. In order to demonstrate the efficacy of our model, we compare its results against a…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
