Litcius/Paper detail

Optimizing Intrusion Detection Systems in Three Phases on the CSE-CIC-IDS-2018 Dataset

Surasit Songma, Theera Sathuphan, Thanakorn Pamutha

2023Computers44 citationsDOIOpen Access PDF

Abstract

This article examines intrusion detection systems in depth using the CSE-CIC-IDS-2018 dataset. The investigation is divided into three stages: to begin, data cleaning, exploratory data analysis, and data normalization procedures (min-max and Z-score) are used to prepare data for use with various classifiers; second, in order to improve processing speed and reduce model complexity, a combination of principal component analysis (PCA) and random forest (RF) is used to reduce non-significant features by comparing them to the full dataset; finally, machine learning methods (XGBoost, CART, DT, KNN, MLP, RF, LR, and Bayes) are applied to specific features and preprocessing procedures, with the XGBoost, DT, and RF models outperforming the others in terms of both ROC values and CPU runtime. The evaluation concludes with the discovery of an optimal set, which includes PCA and RF feature selection.

Topics & Concepts

Random forestComputer sciencePreprocessorNormalization (sociology)Naive Bayes classifierFeature selectionData pre-processingIntrusion detection systemPrincipal component analysisArtificial intelligenceData miningPattern recognition (psychology)Data setDatabase normalizationMachine learningSupport vector machineSociologyAnthropologyNetwork Security and Intrusion DetectionAnomaly Detection Techniques and ApplicationsAdvanced Malware Detection Techniques