• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

使用平衡类分布、特征选择和集成机器学习技术优化物联网入侵检测

Optimizing IoT Intrusion Detection Using Balanced Class Distribution, Feature Selection, and Ensemble Machine Learning Techniques.

作者信息

Musthafa Muhammad Bisri, Huda Samsul, Kodera Yuta, Ali Md Arshad, Araki Shunsuke, Mwaura Jedidah, Nogami Yasuyuki

机构信息

Graduate School of Environmental, Life, Natural Science and Technology, Okayama University, Okayama 700-8530, Japan.

Green Innovation Center, Okayama University, Okayama 700-8530, Japan.

出版信息

Sensors (Basel). 2024 Jul 1;24(13):4293. doi: 10.3390/s24134293.

DOI:10.3390/s24134293
PMID:39001072
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC11244377/
Abstract

Internet of Things (IoT) devices are leading to advancements in innovation, efficiency, and sustainability across various industries. However, as the number of connected IoT devices increases, the risk of intrusion becomes a major concern in IoT security. To prevent intrusions, it is crucial to implement intrusion detection systems (IDSs) that can detect and prevent such attacks. IDSs are a critical component of cybersecurity infrastructure. They are designed to detect and respond to malicious activities within a network or system. Traditional IDS methods rely on predefined signatures or rules to identify known threats, but these techniques may struggle to detect novel or sophisticated attacks. The implementation of IDSs with machine learning (ML) and deep learning (DL) techniques has been proposed to improve IDSs' ability to detect attacks. This will enhance overall cybersecurity posture and resilience. However, ML and DL techniques face several issues that may impact the models' performance and effectiveness, such as overfitting and the effects of unimportant features on finding meaningful patterns. To ensure better performance and reliability of machine learning models in IDSs when dealing with new and unseen threats, the models need to be optimized. This can be done by addressing overfitting and implementing feature selection. In this paper, we propose a scheme to optimize IoT intrusion detection by using class balancing and feature selection for preprocessing. We evaluated the experiment on the UNSW-NB15 dataset and the NSL-KD dataset by implementing two different ensemble models: one using a support vector machine (SVM) with bagging and another using long short-term memory (LSTM) with stacking. The results of the performance and the confusion matrix show that the LSTM stacking with analysis of variance (ANOVA) feature selection model is a superior model for classifying network attacks. It has remarkable accuracies of 96.92% and 99.77% and overfitting values of 0.33% and 0.04% on the two datasets, respectively. The model's ROC is also shaped with a sharp bend, with AUC values of 0.9665 and 0.9971 for the UNSW-NB15 dataset and the NSL-KD dataset, respectively.

摘要

物联网(IoT)设备正在推动各个行业在创新、效率和可持续性方面取得进步。然而,随着连接的物联网设备数量增加,入侵风险成为物联网安全中的一个主要问题。为了防止入侵,实施能够检测和预防此类攻击的入侵检测系统(IDS)至关重要。IDS是网络安全基础设施的关键组成部分。它们旨在检测并响应网络或系统内的恶意活动。传统的IDS方法依靠预定义的签名或规则来识别已知威胁,但这些技术可能难以检测到新颖或复杂的攻击。有人提出采用机器学习(ML)和深度学习(DL)技术来实施IDS,以提高IDS检测攻击的能力。这将增强整体网络安全态势和恢复能力。然而,ML和DL技术面临一些可能影响模型性能和有效性的问题,例如过拟合以及无关特征对寻找有意义模式的影响。为了确保在处理新的和未知威胁时,IDS中机器学习模型具有更好的性能和可靠性,需要对模型进行优化。这可以通过解决过拟合问题和实施特征选择来实现。在本文中,我们提出了一种通过使用类平衡和特征选择进行预处理来优化物联网入侵检测的方案。我们通过实施两种不同的集成模型,在UNSW-NB15数据集和NSL-KD数据集上进行了实验评估:一种是使用带有装袋法的支持向量机(SVM),另一种是使用带有堆叠法的长短期记忆(LSTM)。性能结果和混淆矩阵表明,采用方差分析(ANOVA)特征选择模型的LSTM堆叠是用于分类网络攻击的卓越模型。在两个数据集上,它分别具有96.92%和99.77%的显著准确率以及0.33%和0.04%的过拟合值。该模型的ROC曲线也呈明显的弯曲形状,在UNSW-NB15数据集和NSL-KD数据集上的AUC值分别为0.9665和0.9971。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/119cf238e4ed/sensors-24-04293-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/1b8083f96292/sensors-24-04293-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/8e4c40a29660/sensors-24-04293-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/e228f212edee/sensors-24-04293-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/af4150c924d8/sensors-24-04293-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/12d3d5db46a4/sensors-24-04293-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/119cf238e4ed/sensors-24-04293-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/1b8083f96292/sensors-24-04293-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/8e4c40a29660/sensors-24-04293-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/e228f212edee/sensors-24-04293-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/af4150c924d8/sensors-24-04293-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/12d3d5db46a4/sensors-24-04293-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/0aac/11244377/119cf238e4ed/sensors-24-04293-g006.jpg

相似文献

1
Optimizing IoT Intrusion Detection Using Balanced Class Distribution, Feature Selection, and Ensemble Machine Learning Techniques.使用平衡类分布、特征选择和集成机器学习技术优化物联网入侵检测
Sensors (Basel). 2024 Jul 1;24(13):4293. doi: 10.3390/s24134293.
2
A hybrid feature weighted attention based deep learning approach for an intrusion detection system using the random forest algorithm.基于混合特征加权注意力的深度学习方法与随机森林算法在入侵检测系统中的应用。
PLoS One. 2024 May 23;19(5):e0302294. doi: 10.1371/journal.pone.0302294. eCollection 2024.
3
ROAST-IoT: A Novel Range-Optimized Attention Convolutional Scattered Technique for Intrusion Detection in IoT Networks.ROAST-IoT:一种用于物联网网络入侵检测的新型距离优化注意力卷积散射技术。
Sensors (Basel). 2023 Sep 23;23(19):8044. doi: 10.3390/s23198044.
4
An Aggregated Mutual Information Based Feature Selection with Machine Learning Methods for Enhancing IoT Botnet Attack Detection.基于聚合互信息的特征选择与机器学习方法在增强物联网僵尸网络攻击检测中的应用。
Sensors (Basel). 2021 Dec 28;22(1):185. doi: 10.3390/s22010185.
5
Multi-Classification and Tree-Based Ensemble Network for the Intrusion Detection System in the Internet of Vehicles.用于车联网入侵检测系统的多分类与基于树的集成网络
Sensors (Basel). 2023 Oct 28;23(21):8788. doi: 10.3390/s23218788.
6
Optimized intrusion detection in IoT and fog computing using ensemble learning and advanced feature selection.使用集成学习和先进特征选择技术实现物联网和雾计算中的优化入侵检测。
PLoS One. 2024 Aug 1;19(8):e0304082. doi: 10.1371/journal.pone.0304082. eCollection 2024.
7
An efficient intrusion detection system for IoT security using CNN decision forest.一种基于卷积神经网络决策森林的高效物联网安全入侵检测系统。
PeerJ Comput Sci. 2024 Sep 9;10:e2290. doi: 10.7717/peerj-cs.2290. eCollection 2024.
8
A Novel Feature-Selection Algorithm in IoT Networks for Intrusion Detection.物联网网络中一种用于入侵检测的新型特征选择算法。
Sensors (Basel). 2023 Sep 28;23(19):8153. doi: 10.3390/s23198153.
9
Customised Intrusion Detection for an Industrial IoT Heterogeneous Network Based on Machine Learning Algorithms Called FTL-CID.基于机器学习算法的工业物联网异构网络的定制入侵检测,称为 FTL-CID。
Sensors (Basel). 2022 Dec 28;23(1):321. doi: 10.3390/s23010321.
10
IoT Intrusion Detection Taxonomy, Reference Architecture, and Analyses.物联网入侵检测分类法、参考架构和分析。
Sensors (Basel). 2021 Sep 26;21(19):6432. doi: 10.3390/s21196432.

引用本文的文献

1
An Adaptive Framework for Intrusion Detection in IoT Security Using MAML (Model-Agnostic Meta-Learning).一种使用MAML(模型无关元学习)的物联网安全入侵检测自适应框架。
Sensors (Basel). 2025 Apr 15;25(8):2487. doi: 10.3390/s25082487.

本文引用的文献

1
Composition of Hybrid Deep Learning Model and Feature Optimization for Intrusion Detection System.混合深度学习模型的组成与入侵检测系统的特征优化。
Sensors (Basel). 2023 Jan 12;23(2):890. doi: 10.3390/s23020890.
2
Application of deep autoencoder as an one-class classifier for unsupervised network intrusion detection: a comparative evaluation.深度自动编码器作为无监督网络入侵检测的单类分类器的应用:一项比较评估。
PeerJ Comput Sci. 2020 Dec 7;6:e327. doi: 10.7717/peerj-cs.327. eCollection 2020.
3
Long short-term memory.长短期记忆
Neural Comput. 1997 Nov 15;9(8):1735-80. doi: 10.1162/neco.1997.9.8.1735.