Mutual Information-based Intrusion Detection Model for Industrial Internet

High dimension, redundancy attributes and high computing cost issues usually exist in the industrial Internet intrusion detection field. For solving these problems, the mutual information-based intrusion detection model for industrial Internet was proposed. Firstly, by using features selection method based on mutual information, the attributes set was reduced and traffic characteristics vector was established. Secondly, the normal and abnormal traffic characteristics maps were obtained via the traffic characteristics map technology based on multi correlation analysis. Finally, with the using of discrete cosine transform and nonnegative matrix factorization, we can produce normal and abnormal hash digest, which were used to produce intrusion detection rules. To verify the effectiveness of this model, we adopt NSL-KDD data as the experimental data. The experimental results show that, by using the features selection approach based on mutual information, the proposed model has good classification accuracy and gets good detection performance.

[1]  Justin Varghese,et al.  Security issues in SCADA based industrial control systems , 2017, 2017 2nd International Conference on Anti-Cyber Crimes (ICACC).

[2]  Sireesha Rodda,et al.  Class imbalance problem in the Network Intrusion Detection Systems , 2016, 2016 International Conference on Electrical, Electronics, and Optimization Techniques (ICEEOT).

[3]  Christian Diedrich,et al.  Accelerated deep neural networks for enhanced Intrusion Detection System , 2016, 2016 IEEE 21st International Conference on Emerging Technologies and Factory Automation (ETFA).

[5]  Ali A. Ghorbani,et al.  A detailed analysis of the KDD CUP 99 data set , 2009, 2009 IEEE Symposium on Computational Intelligence for Security and Defense Applications.

[6]  W. Marsden I and J , 2012 .

[7]  Sun Limin,et al.  Intrusion Detection Techniques for Industrial Control Systems , 2016 .

[8]  Puja Padiya,et al.  Intrusion detection system by improved preprocessing methods and Naïve Bayes classifier using NSL-KDD 99 Dataset , 2014, 2014 International Conference on Electronics and Communication Systems (ICECS).

[9]  Sushanta Karmakar,et al.  A Neural Network based system for Intrusion Detection and attack classification , 2016, 2016 Twenty Second National Conference on Communication (NCC).

[10]  Aydin Behnad,et al.  On efficiency enhancement of the correlation-based feature selection for intrusion detection systems , 2016, 2016 IEEE 7th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON).

[11]  Qiu-Yu Zhang,et al.  The Integrated Artificial Immune Intrusion Detection Model Based on Decision-theoretic Rough Set , 2017, Int. J. Netw. Secur..

[12]  Peyman Kabiri,et al.  Feature Selection for Intrusion Detection System Using Ant Colony Optimization , 2016, Int. J. Netw. Secur..

[13]  Gholamhossein Dastghaibyfard,et al.  Two-tier network anomaly detection model: a machine learning approach , 2017, Journal of Intelligent Information Systems.

[14]  Puja Padiya,et al.  Improving classification using preprocessing and machine learning algorithms on NSL-KDD dataset , 2015, 2015 International Conference on Communication, Information & Computing Technology (ICCICT).

[15]  Xiangjian He,et al.  Building an Intrusion Detection System Using a Filter-Based Feature Selection Algorithm , 2016, IEEE Transactions on Computers.

[16]  Dewan Md Farid,et al.  Feature selection and intrusion classification in NSL-KDD cup 99 dataset employing SVMs , 2014, The 8th International Conference on Software, Knowledge, Information Management and Applications (SKIMA 2014).

[17]  Seyed Mojtaba Hosseini Bamakan,et al.  An effective intrusion detection framework based on MCLP/SVM optimized by time-varying chaos particle swarm optimization , 2016, Neurocomputing.

[18]  Yu-Lin He,et al.  Fuzziness based semi-supervised learning approach for intrusion detection system , 2017, Inf. Sci..

[19]  Anamika Yadav,et al.  Performance analysis of NSL-KDD dataset using ANN , 2015, 2015 International Conference on Signal Processing and Communication Engineering Systems.

[20]  Aderemi Oluyinka Adewumi,et al.  Efficient Feature Selection Technique for Network Intrusion Detection System Using Discrete Differential Evolution and Decision , 2017, Int. J. Netw. Secur..

[21]  Ali Dehghantanha,et al.  Ensemble-based multi-filter feature selection method for DDoS detection in cloud computing , 2016, EURASIP Journal on Wireless Communications and Networking.

[22]  Julio Ortega Lopera,et al.  Network Anomaly Classification by Support Vector Classifiers Ensemble and Non-linear Projection Techniques , 2013, HAIS.

[23]  Xiangjian He,et al.  A System for Denial-of-Service Attack Detection Based on Multivariate Correlation Analysis , 2014, IEEE Transactions on Parallel and Distributed Systems.