An Optimized Auto-Encoder based Approach for Detecting Zero-Day Cyber-Attacks in Computer Network

• Published in: 2021 5th International Conference on Information Systems and Computer Networks (ISCON) pp. 1 - 6
• Main Authors: Roshan, Khushnaseeb, Zafar, Aasim
• Format: Conference Proceeding
• Language: English
• Published: IEEE 22.10.2021
• Subjects: Autoencoders; Computational modeling; Computer networks; Computer security; Deep learning; Information systems; Intrusion detection; Intrusion Detection System; Machine Learning; Telecommunication traffic; Zero-day Attacks
• DOI: 10.1109/ISCON52037.2021.9702437

Machine Learning and Deep Learning have been applied in Cybersecurity for more than a decade, such as cyber-attack detection, intrusion detection, network traffic classification, and much more. However, detection of Zero-day cyber-attacks is the utmost priority of the security administrator. Zero-day cyber-attacks try to exploit the system's vulnerability that remains unclosed until the exploit has occurred. The solution proposed in this work is based on an Intrusion Detection System that can detect Zero-day and unknown cyber-attacks. We used the autoencoder to build an intelligent intrusion detection model. The novelty of the proposed work is to show that how threshold plays a crucial role in the detection of Zero-day cyber-attacks with good recall. Also, choosing a single threshold for one type of attack might not work effectively for other unseen cyber-attacks. Hence we have evaluated accuracy separately for each attack with different thresholds to show its significance. We have used CICIDS2017, the latest dataset, for evaluation purposes. The model shows an excellent result in terms of accuracy or recall both separately and overall. The overall accuracy of the optimized version of autoencoder (OPT_AE) is 99.29 % on the CICIDS2017 dataset.