International Journal of Wireless Network Security

Interconnected systems such as database servers, web-servers are now under threats from network attackers. A single attack on a computer or network system can lead to significant damage. Denial of Service (DoS) is a severe form of network attack that is used against an information system in order to block legitimate users from accessing the infected system. In a DoS attack, the attacker usually generates enormous packets by a large number of compromised computers and can easily force victims out of service within a short period of time. Therefore, an ensemble semi-supervised learning approach is proposed in this paper using different classification techniques. These techniques are Random Forest, Decision Tree and Extreme Gradient Boosting. To evaluate the detection performance of the proposed approach, extensive experiments have been conducted on the benchmark datasets such as KDD'99, NSL-KDD, and UNSW-NB15. Besides, the proposed approach has been compared with other machine learning techniques to validate based on the same datasets.

Ming Xue, Changjun Zhu. Applied Research on Data Mining Algorithm in Network Intrusion Detection. 2009 International Joint Conference on Artificial Intelligence. 25-26 April 2009; Hainan, China, New York: IEEE; 2009.

Solahuddin Shamsuddin, Michael E. Woodward. Applying Knowledge Discovery in Database Techniques in Modeling Packet Header Anomaly Intrusion Detection Systems. Journal of Software. 2008;3(9):68-76.

Chi-Ho Tsang, Sam Kwong, et al. Genetic-fuzzy rule mining approach and evaluation of feature selection techniques for anomaly intrusion detection. Pattern Recognition. 2007;40(9):2373-2391.

Chih-Fong Tsai, Chia-Ying Lin. A triangle area based nearest neighbors approach to intrusion detection. Pattern Recognition. 2010;43(1);222-229.

Y. Li and L. Guo. An active learning based TCM-KNN algorithm for supervised network intrusion detection. Computers & Security. 2007;26(7-8):459-467.

Jeffrey Erman, Martin Arlitt, et al. Traffic classification using clustering algorithms. Proceedings of the 2006 SIGCOMM workshop on Mining network data – MineNet. Sep 11-15, 2006; ACM.

Nahla Ben Amor, Salem Benferhat, et al. Naive Bayes vs decision trees in intrusion detection systems. Proceedings of the 2004 ACM symposium on Applied computing. March 14-17, 2004; ACM. 2004.

M. Panda, A. Abraham, et al. Network intrusion detection system: A machine learning approach. Intelligent Decision Technologies. 2011;5(4):347-356.

M. Panda and M. Patra. A Comparative Study of Data Mining Algorithms for Network Intrusion Detection. 2008 First International Conference on Emerging Trends in Engineering and Technology. 16-18 July 2008; Nagpur, India, New York: IEEE; 2008.

Z. Muda; W. Yassi, et al. Intrusion detection based on K-Means clustering and Na¨ıve Bayes classification. 7th International Conference on Information Technology in Asia. 12-13 July 2011; Sarawak, Malaysia, New York: IEEE; 2011.

P. Amudha, S. Karthik and S. Sivakumari. Classification Techniques for Intrusion Detection An Overview. International Journal of Computer Applications. 2013;76(16):33-40.

Zhiyuan Tan, Aruna Jamdagni, et al. A System for Denial-of-Service Attack Detection Based on Multivariate Correlation Analysis. IEEE Transactions on Parallel and Distributed Systems. 2014;25(2):447-456.

Jin Kim, Nara Shin, et al. Method of intrusion detection using deep neural network. 2017 IEEE International Conference on Big Data and Smart Computing (BigComp). 13-16 Feb. 2017; Jeju, Korea (South), New York: IEEE; 2017.

J. Brownlee, “How to Choose a Feature Selection Method For Machine Learning”, Machine Learning Mastery, 2021. [Online]. Available: https://machinelearningmastery.com/feature-selection-withreal-and-categorical-data Accessed 4 April 2021].

J. Brownlee. How to Calculate Feature Importance With Python”, Machine Learning Mastery, 2021. [Online]. Available: https://machinelearningmastery.com/calculate-feature-importance-with-python [Accessed 4 April 2021].

J. Brownlee, “Feature Importance and Feature Selection with XGBoost in Python”, Machine Learning Mastery, 2021. [Online]. Available: https://machinelearningmastery.com/feature-importanceand-feature-selection-with-xgboost-in-python [Accessed 4 April 2021].

D. Singh, N. Harbi and M. Zahidur Rahman. Combining Naive Bayes and Decision Tree for Adaptive Intrusion Detection. International journal of Network Security & Its Applications. 2010;2(2):12-25.

M. Aamir and S. Zaidi. Clustering based semi-supervised machine learning for DDoS attack classification. Journal of King Saud University - Computer and Information Sciences. 2019. Available: 10.1016/j.jksuci.2019.02.003.

A. Boroujerdi and S. Ayat. A robust ensemble of neuro-fuzzy classifiers for DDoS attack detection. Proceedings of 2013 3rd International Conference on Computer Science and Network Technology. 2013.

S. Varuna and P. Natesan. An integration of k-means clustering and naive bayes classifier for Intrusion Detection. 2015 3rd International Conference on Signal Processing, Communication and Networking (ICSCN). 2015. Available: 10.1109/icscn.2015.7219835.

S. Khonde and V. Ulagamuthalvi. Ensemble-based semi-supervised learning approach for a distributed intrusion detection system. Journal of Cyber Security Technology. 2019;3(3):163-188.

E. Salim Islim. Intrusion Detection Model Inspired by Immune Using K-Means and Naive Bayes as Hybrid Learning Approach. Independent.academia.edu, 2021. [Online]. Available: https://independent.academia.edu/emadislim.

P. Verma, S. Anwar, S. Khan and S. Mane. Network Intrusion Detection Using Clustering and Gradient Boosting. 2018 9th International Conference on Computing, Communication and Networking Technologies (ICCCNT), 2018. Available: 10.1109/icccnt.2018.8494186.

C. Chen, Yunchao Gong and Yingjie Tian. Semi-supervised learning methods for network intrusion detection. 2008 IEEE International Conference on Systems, Man and Cybernetics. 12-15 Oct. 2008; Singapore, New York: IEEE; 2009.

M. Idhammad, K. Afdel and M. Belouch. Semi-supervised machine learning approach for DDoS detection. Applied Intelligence. 2018;48(10):3193-3208.

V. Cao, M. Nicolau and J. McDermott. A Hybrid Autoencoder and Density Estimation Model for Anomaly Detection. Parallel Problem Solving from Nature – PPSN XIV. pp. 717-726; 2016. Available: 10.1007/978-3-319-45823-6 67.