Formulating Subgroup Discovery as a Quantum Optimization Problem for Network Security
Samuel Spell, Chi-Ren Shyu
TL;DR
This paper introduces a quantum optimization approach for Subgroup Discovery in network security, demonstrating its potential to identify interpretable attack-related feature interactions on quantum hardware.
Contribution
It formulates Subgroup Discovery as a quantum optimization problem using QUBO and QAOA, pioneering its application in cybersecurity and analyzing hardware scaling limits.
Findings
QAOA achieves high WRAcc ratios at small qubit counts
QAOA discovers multi-feature interactions missed by classical methods
Hardware noise limits QAOA performance at larger qubit sizes
Abstract
While current network intrusion detection systems achieve satisfactory accuracy, they often lack explainability. Subgroup Discovery (SD) addresses this by building interpretable rules that characterize feature interactions associated with attack traffic. With large datasets, classical heuristic beam search methods struggle with exponentially scaling search spaces and can prune critical multi-feature interactions. This paper introduces a quantum-enhanced pipeline for SD applied to network intrusion detection using NSL-KDD, formulating SD as quantum optimization for the first time. By encoding feature selection as a Quadratic Unconstrained Binary Optimization (QUBO) and solving it via the Quantum Approximate Optimization Algorithm (QAOA) on IBM Quantum hardware (ibm_pittsburgh), the pipeline identifies subgroups of network features that discriminate normal from attack traffic. A…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.