New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier
The application of Machine Learning (ML)-based Intrusion Detection System (IDS) has been widely used. The advantage of ML-based IDS is that it can detect intrusions in the network. However, in its application, there are still false positive detections on the IDS. False positive detection occurs due...
| Main Authors: | , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Published: |
2022
|
| Subjects: | |
| Online Access: | https://repository.ugm.ac.id/282185/1/Amarudin%20et%20al%20-%202022%20-%20New_Approach_of_Ensemble_Method_to_Improve_Performance_of_IDS_using_S-SDN_Classifier.pdf |
| _version_ | 1826050503158530048 |
|---|---|
| author | Amarudin, Amarudin Ferdiana, Ridi Widyawan, Widyawan |
| author_facet | Amarudin, Amarudin Ferdiana, Ridi Widyawan, Widyawan |
| author_sort | Amarudin, Amarudin |
| collection | UGM |
| description | The application of Machine Learning (ML)-based Intrusion Detection System (IDS) has been widely used. The advantage of ML-based IDS is that it can detect intrusions in the network. However, in its application, there are still false positive detections on the IDS. False positive detection occurs due to improper ML techniques. This research applies an S-SDN model based on Ensemble Learning (EL) to overcome this problem. The S-SDN model is built from three base-learners, namely SVM, Decision Tree, and Naïve Bayes with the Stacking technique. Furthermore, the S-SDN model is used as a classifier on the IDS to detect intrusions. S-SDN was validated using the UNSW-NB15 dataset. Based on the experiment, S-SDN's performance was superior to the old method based on a single classifier. The performance of S-SDN can achieve an accuracy of 83.19. In comparison, the old method based on a single classifier (SVM) can only achieve an accuracy of 75.89, and the ensemble classifier (Bagging-DT) is only 80,09. As for further research, the development of EL-based IDS still needs to be improved. For example, it builds an EL-based model with feature selection techniques and different base learners. © 2022 IEEE. |
| first_indexed | 2024-03-14T00:05:00Z |
| format | Conference or Workshop Item |
| id | oai:generic.eprints.org:282185 |
| institution | Universiti Gadjah Mada |
| language | English |
| last_indexed | 2024-03-14T00:05:00Z |
| publishDate | 2022 |
| record_format | dspace |
| spelling | oai:generic.eprints.org:2821852023-11-29T07:29:44Z https://repository.ugm.ac.id/282185/ New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier Amarudin, Amarudin Ferdiana, Ridi Widyawan, Widyawan Electrical and Electronic Engineering not elsewhere classified The application of Machine Learning (ML)-based Intrusion Detection System (IDS) has been widely used. The advantage of ML-based IDS is that it can detect intrusions in the network. However, in its application, there are still false positive detections on the IDS. False positive detection occurs due to improper ML techniques. This research applies an S-SDN model based on Ensemble Learning (EL) to overcome this problem. The S-SDN model is built from three base-learners, namely SVM, Decision Tree, and Naïve Bayes with the Stacking technique. Furthermore, the S-SDN model is used as a classifier on the IDS to detect intrusions. S-SDN was validated using the UNSW-NB15 dataset. Based on the experiment, S-SDN's performance was superior to the old method based on a single classifier. The performance of S-SDN can achieve an accuracy of 83.19. In comparison, the old method based on a single classifier (SVM) can only achieve an accuracy of 75.89, and the ensemble classifier (Bagging-DT) is only 80,09. As for further research, the development of EL-based IDS still needs to be improved. For example, it builds an EL-based model with feature selection techniques and different base learners. © 2022 IEEE. 2022 Conference or Workshop Item PeerReviewed application/pdf en https://repository.ugm.ac.id/282185/1/Amarudin%20et%20al%20-%202022%20-%20New_Approach_of_Ensemble_Method_to_Improve_Performance_of_IDS_using_S-SDN_Classifier.pdf Amarudin, Amarudin and Ferdiana, Ridi and Widyawan, Widyawan (2022) New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier. In: IEEE International Conference on Communication, Networks and Satellite (COMNETSAT). https://ieeexplore.ieee.org/document/9994302 |
| spellingShingle | Electrical and Electronic Engineering not elsewhere classified Amarudin, Amarudin Ferdiana, Ridi Widyawan, Widyawan New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier |
| title | New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier |
| title_full | New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier |
| title_fullStr | New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier |
| title_full_unstemmed | New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier |
| title_short | New Approach of Ensemble Method to Improve Performance of IDS using S-SDN Classifier |
| title_sort | new approach of ensemble method to improve performance of ids using s sdn classifier |
| topic | Electrical and Electronic Engineering not elsewhere classified |
| url | https://repository.ugm.ac.id/282185/1/Amarudin%20et%20al%20-%202022%20-%20New_Approach_of_Ensemble_Method_to_Improve_Performance_of_IDS_using_S-SDN_Classifier.pdf |
| work_keys_str_mv | AT amarudinamarudin newapproachofensemblemethodtoimproveperformanceofidsusingssdnclassifier AT ferdianaridi newapproachofensemblemethodtoimproveperformanceofidsusingssdnclassifier AT widyawanwidyawan newapproachofensemblemethodtoimproveperformanceofidsusingssdnclassifier |