A Hybrid Approach for Network Intrusion Detection

• Published in: Computers, materials & continua Vol. 70; no. 1; pp. 91 - 107
• Main Authors: Mehmood, Mavra, Javed, Talha, Nebhen, Jamel, Abbas, Sidra, Abid, Rabia, Reddy Bojja, Giridhar, Rizwan, Muhammad
• Format: Journal Article
• Language: English
• Published: Henderson Tech Science Press 01.01.2022
• Subjects: Adaptive systems; Classification; Communications traffic; Cybersecurity; Electronic devices; Fuzzy logic; Intrusion detection systems; Malware; Support vector machines
• ISSN: 1546-2226; 1546-2218; 1546-2226
• DOI: 10.32604/cmc.2022.019127

Due to the widespread use of the internet and smart devices, various attacks like intrusion, zero-day, Malware, and security breaches are a constant threat to any organization's network infrastructure. Thus, a Network Intrusion Detection System (NIDS) is required to detect attacks in network traffic. This paper proposes a new hybrid method for intrusion detection and attack categorization. The proposed approach comprises three steps to address high false and low false-negative rates for intrusion detection and attack categorization. In the first step, the dataset is preprocessed through the data transformation technique and min-max method. Secondly, the random forest recursive feature elimination method is applied to identify optimal features that positively impact the model's performance. Next, we use various Support Vector Machine (SVM) types to detect intrusion and the Adaptive Neuro-Fuzzy System (ANFIS) to categorize probe, U2R, R2U, and DDOS attacks. The validation of the proposed method is calculated through Fine Gaussian SVM (FGSVM), which is 99.3% for the binary class. Mean Square Error (MSE) is reported as 0.084964 for training data, 0.0855203 for testing, and 0.084964 to validate multiclass categorization.