Dual-IDS: A bagging-based gradient boosting decision tree model for network anomaly intrusion detection system

Louk, Maya Hilda Lestari and Tama, Bayu Adhi (2023) Dual-IDS: A bagging-based gradient boosting decision tree model for network anomaly intrusion detection system. Expert Systems With Applications, 213 (Part B). p. 119030. (In Press)

[thumbnail of 1-s2.0-S0957417422020486-main (2).pdf] PDF
1-s2.0-S0957417422020486-main (2).pdf - Published Version
Restricted to Repository staff only
Download (1MB)
[thumbnail of Maya Hilda_Dual-IDS.pdf] PDF
Maya Hilda_Dual-IDS.pdf
Restricted to Repository staff only
Download (2MB)
Official URL / DOI: https://www.sciencedirect.com/science/article/pii/...

Abstract

The mission of an intrusion detection system (IDS) is to monitor network activities and assess whether or not they are malevolent. Specifically, anomalybased IDS can discover irregular activities by discriminating between normal and anomalous deviations. Nonetheless, existing strategies for detecting anomalies generally rely on single classification models that are still incapable of reducing the false alarm rate and increasing the detection rate. This study introduces a dual ensemble model by combining two existing ensemble techniques, such as bagging and gradient boosting decision tree (GBDT). Multiple dual ensemble schemes involving various fine-tuned GBDT algorithms such as gradient boosting machine (GBM), LightGBM, CatBoost, and XGBoost, are extensively appraised using multiple publicly available data sets, such as NSL-KDD, UNSWNB15, and HIKARI-2021. The results indicate that the proposed technique is a reasonable solution for the anomaly-based IDS task. Furthermore, we demonstrate that the combination of Bagging and GBM is superior to all alternative combination schemes. In addition, the proposed dual ensemble (e.g., BaggingGBM) is considerably more competitive than similar techniques reported in the current literature. Keywords: Gradient boosting tree, intrusion detection, anomaly detection, bagging, dual ensemble

Item Type: Article
Uncontrolled Keywords: Gradient boosting tree; Intrusion detection; Anomaly detection; Bagging; Dual ensemble
Subjects: Q Science > Q Science (General)
T Technology > T Technology (General)
Divisions: Faculty of Engineering > Department of Informatic
Depositing User: MAYA HILDA LESTARI LOUK
Date Deposited: 25 Oct 2022 07:35
Last Modified: 25 Oct 2022 07:35
URI: http://repository.ubaya.ac.id/id/eprint/42787

Actions (login required)

View Item View Item
Ubaya Repository is powered by EPrints 3.4 which is developed by the School of Electronics and Computer Science at the University of Southampton. About EPrints | Accessibility