Development of an Intrusion Detection System (IDS) using Machine Learning Algorithms
Abstract
As cyber threats evolve, traditional Intrusion Detection Systems face significant problems such as high false positives, inability to detect new attack signatures, and poor scalability. This paper aims to mitigate these limitations by implementing an IDS based on machine learning techniques to improve the detection capability, flexibility, and effectiveness. Exploiting the realistic and diverse CICIDS 2017 dataset that is quite famous for its realistic and complex attack scenarios, the study does an excellent job of including several enhanced preprocessing techniques to have the best feature selection techniques and, hence, the best data quality. First, an experimental comparison of Support Vector Machines (SVMs), Random Forests (RFs), and neural networks’ performance in detecting threatening activities is made to choose the most suitable machine-learning approaches. The quantitative performance of each model is compared and assessed using model accuracy, precision, recall, the F1-score, and the ROC-AUC curve. This research illustrates how machine learning can solve cybersecurity problems by presenting an adaptive algorithm that can disregard emerging threats. The observations benefit the ongoing enhancement of IDS and provide an understanding of deploying efficient and progressive solutions in live networks.
References
ing in IoT. Procedia Computer Science. 2020 Jan 1;167:1561-73. https://www.sciencedirect.com/science/article/pii/S1877050920308334/pdf?md5=f5f
27ceaef8b3ad6109e174a497d3a53&pid=1-s2.0-S18 77050920308334-main.pdf
2. Stiawan D, Idris MY, Bamhdi AM, Budiarto R. CICIDS-2017 dataset feature analysis with information
gain for anomaly detection. IEEE Access. 2020 Jul 16;8:132911-21. https://ieeexplore.ieee.org/abstract/
document/9142219/
3. Kilincer IF, Ertam F, Sengur A. Machine learning methods for cyber security intrusion detection: Datasets
and comparative study. Computer Networks. 2021 Apr 7;188:107840.
