An Empirical Comparison on Malicious Activity Detection Using Different Neural Network-Based Models

The internet is growing at a rapid pace offering multiple web-based applications catering to the changing needs and demands of customers. Nevertheless, extensive use of internet services has potentially exposed the threats of data security and reliability. With technological advancements, cyber threats have also become more sophisticated with the blend of distinctive forms of attacks to cause potential damage. The increase in the number and variety of cyber attacks is inevitable; hence it is imperative to improve the efficiency of the cyber security systems. This research aims to compare different neural network models to distinguish malicious acts from non-malicious ones. The examined models are trained, validated, and tested using two datasets(cyber-physical subsystem dataset and KDD dataset). The performance of the studied models is measured using the confusion matrix. For the cyber-physical subsystem dataset, binary classification and multi-class classification are used for evaluating the models. In the KDD dataset, binary classification is the only classification approach because the dataset contains two classes, regular (normal actions) and harmful (malicious actions). In general, the results in binary classification are more encouraging than in multi-class classification. Among all the models, the PNN model achieves the best performance, while the GRNN model is the fastest one. Although PNN’s runtime is slightly higher than the GRNN model, we can claim that the PNN is the best model for our data because a trade-off between the performance and run time can be obtained.

[1]  Wen-Chuan Lee,et al.  Trojaning Attack on Neural Networks , 2018, NDSS.

[2]  Yun-Chun Chen,et al.  Deep learning for malicious flow detection , 2017, 2017 IEEE 28th Annual International Symposium on Personal, Indoor, and Mobile Radio Communications (PIMRC).

[3]  Slim Abdennadher,et al.  Enhancing one-class support vector machines for unsupervised anomaly detection , 2013, ODD '13.

[4]  Jesse M. Ehrenfeld WannaCry, Cybersecurity and Health Information Technology: A Time to Act , 2017, Journal of Medical Systems.

[5]  James B. Fraley,et al.  The promise of machine learning in cybersecurity , 2017, SoutheastCon 2017.

[6]  M. Amer,et al.  Nearest-Neighbor and Clustering based Anomaly Detection Algorithms for RapidMiner , 2012 .

[7]  Bhavna Dharamkar,et al.  Cyber-Attack Classification using Improved Ensemble Technique based on Support Vector Machine and Neural Network , 2014 .

[8]  D.-S. Huang,et al.  Radial Basis Probabilistic Neural Networks: Model and Application , 1999, Int. J. Pattern Recognit. Artif. Intell..

[9]  Anna Magdalena Kosek,et al.  Ensemble regression model-based anomaly detection for cyber-physical intrusion detection in smart grids , 2016, 2016 IEEE Electrical Power and Energy Conference (EPEC).

[10]  György J. Simon,et al.  Data Mining for Cyber Security , 2006 .

[11]  Konstantin Berlin,et al.  Deep neural network based malware detection using two dimensional binary program features , 2015, 2015 10th International Conference on Malicious and Unwanted Software (MALWARE).

[12]  David Brosset,et al.  Dataset of anomalies and malicious acts in a cyber-physical subsystem , 2017, Data in brief.

[13]  V. S. Shankar Sriram,et al.  A Hypergraph and Arithmetic Residue-based Probabilistic Neural Network for classification in Intrusion Detection Systems , 2017, Neural Networks.

[14]  Ali H. Mirza,et al.  Computer network intrusion detection using various classifiers and ensemble learning , 2018, 2018 26th Signal Processing and Communications Applications Conference (SIU).

[15]  Marcin Szpyrka,et al.  An Entropy-Based Network Anomaly Detection Method , 2015, Entropy.

[16]  M. Govindarajan Intrusion Detection using an Ensemble of Classification Methods , 2012 .

[17]  Tram Truong Huu,et al.  Crossfire Attack Detection Using Deep Learning in Software Defined ITS Networks , 2018, 2019 IEEE 89th Vehicular Technology Conference (VTC2019-Spring).