1D CNN for Feature Reconstruction on Network Threat Detection

Machine learning algorithms for building network threat detection model are regarded as effective methods. Some big network security data has 1D characteristics. And 1D CNN can deal with 1D signal data well. Therefore, in this paper, we propose a network threat detection model based on 1D CNN and shallow machine learning algorithms. Firstly, 1D CNN deep model is constructed, including input layer, convolution layer, pooling layer, full connection layer, softmax layer and output layer. Combining the layers nonlinear learning, reconstructed feature data is generated, which reduces the dimension of the features comparing with that of original data. Secondly, the reconstructed data is input into the shallow machine learning algorithms to classify the network security data and detect the abnormal behavior in the security dataset. The experimental results show that the classification performance of 1D CNN is outstanding comparing with other dimension reduction algorithms.

[1]  Thinagaran Perumal,et al.  Improving Anomalous Rare Attack Detection Rate for Intrusion Detection System Using Support Vector Machine and Genetic Programming , 2015, Neural Processing Letters.

[2]  Zheng Qin,et al.  Malware Variant Detection Using Opcode Image Recognition with Small Training Sets , 2016, 2016 25th International Conference on Computer Communication and Networks (ICCCN).

[3]  Yao Wang,et al.  Using CNN-based Representation Learning Method for Malicious Traffic Identification , 2018, 2018 IEEE/ACIS 17th International Conference on Computer and Information Science (ICIS).

[4]  Lifeng Cao,et al.  Analysis of Multi-Types of Flow Features Based on Hybrid Neural Network for Improving Network Anomaly Detection , 2019, IEEE Access.

[5]  Yong Qi,et al.  Detecting Malware with an Ensemble Method Based on Deep Neural Network , 2018, Secur. Commun. Networks.

[6]  Jinoh Kim,et al.  A survey of deep learning-based network anomaly detection , 2017, Cluster Computing.

[7]  Wei-Yang Lin,et al.  Intrusion detection by machine learning: A review , 2009, Expert Syst. Appl..

[8]  Wooseong Kim,et al.  1D CNN based network intrusion detection with normalization on imbalanced data , 2020, 2020 International Conference on Artificial Intelligence in Information and Communication (ICAIIC).

[9]  Mei Song,et al.  PCCN: Parallel Cross Convolutional Neural Network for Abnormal Network Traffic Flows Detection in Multi-Class Imbalanced Network Traffic Flows , 2019, IEEE Access.

[10]  Jun Zou,et al.  One-dimensional convolutional neural networks for acoustic waste sorting , 2020 .

[11]  Bo Lang,et al.  Machine Learning and Deep Learning Methods for Intrusion Detection Systems: A Survey , 2019, Applied Sciences.

[12]  Marcin Woźniak,et al.  Accurate and fast URL phishing detector: A convolutional neural network approach , 2020, Comput. Networks.

[13]  Abien Fred Agarap A Neural Network Architecture Combining Gated Recurrent Unit (GRU) and Support Vector Machine (SVM) for Intrusion Detection in Network Traffic Data , 2017, ICMLC.