A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things

Mohammed M. Alani; Ali Ismail Awad; Ezedin Barka

doi:10.1109/CSR61664.2024.10679427

A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things

Mohammed M. Alani, Ali Ismail Awad, Ezedin Barka

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The applications of the Internet of Things (IoT) have grown significantly both in scope and complexity. IoT devices are becoming an integral part of our daily lives. This significant growth in IoT adoption is accompanied by a substantial increase in the interest of malicious actors. IoT devices are a preferred target for malicious actors due to their inherent vulnerabilities and limited computational resources, which make them difficult to protect and secure. This study introduces a novel ensemble learning-based intrusion detection system (IDS) using network flow features. The goal of the proposed system is to achieve both simplicity and high detection accuracy. The novelty behind the system lies in using a new feature called 'history', extracted from flow information, combined with traditional features. The core classification engine includes bidirectional long short-term memory (BiLSTM) and multilayer perceptron (MLP) classifiers, with a decision tree (DT) classifier finalizing the decision-making process. The proposed system has been evaluated using a public IoT network dataset with an accomplished accuracy of 99.6%. The system has achieved results comparable to those of other systems that are more complex. The obtained results demonstrate the superior performance of the proposed ensemble learning-based system in comparison to conventional network-flow-based intrusion detection systems.

Original language	English
Title of host publication	Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	1-8
Number of pages	8
ISBN (Electronic)	9798350375367
DOIs	https://doi.org/10.1109/CSR61664.2024.10679427
Publication status	Published - 2024
Event	2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024 - Hybrid, London, United Kingdom Duration: Sept 2 2024 → Sept 4 2024

Publication series

Name	Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

Conference

Conference	2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024
Country/Territory	United Kingdom
City	Hybrid, London
Period	9/2/24 → 9/4/24

Keywords

BiLSTM
ensemble learning
Internet of Things security
intrusion detection systems
MLP
network flow

ASJC Scopus subject areas

Artificial Intelligence
Computer Networks and Communications
Safety, Risk, Reliability and Quality

Access to Document

10.1109/CSR61664.2024.10679427

Cite this

Alani, M. M., Awad, A. I., & Barka, E. (2024). A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things. In Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024 (pp. 1-8). (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CSR61664.2024.10679427

A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things. / Alani, Mohammed M.; Awad, Ali Ismail ; Barka, Ezedin.
Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Institute of Electrical and Electronics Engineers Inc., 2024. p. 1-8 (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Alani, MM, Awad, AI & Barka, E 2024, A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things. in Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024, Institute of Electrical and Electronics Engineers Inc., pp. 1-8, 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024, Hybrid, London, United Kingdom, 9/2/24. https://doi.org/10.1109/CSR61664.2024.10679427

Alani MM, Awad AI , Barka E. A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things. In Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Institute of Electrical and Electronics Engineers Inc. 2024. p. 1-8. (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024). doi: 10.1109/CSR61664.2024.10679427

Alani, Mohammed M. ; Awad, Ali Ismail ; Barka, Ezedin. / A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things. Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Institute of Electrical and Electronics Engineers Inc., 2024. pp. 1-8 (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024).

@inproceedings{d9b6ade173f443c190e24458a60cbfe7,

title = "A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things",

abstract = "The applications of the Internet of Things (IoT) have grown significantly both in scope and complexity. IoT devices are becoming an integral part of our daily lives. This significant growth in IoT adoption is accompanied by a substantial increase in the interest of malicious actors. IoT devices are a preferred target for malicious actors due to their inherent vulnerabilities and limited computational resources, which make them difficult to protect and secure. This study introduces a novel ensemble learning-based intrusion detection system (IDS) using network flow features. The goal of the proposed system is to achieve both simplicity and high detection accuracy. The novelty behind the system lies in using a new feature called 'history', extracted from flow information, combined with traditional features. The core classification engine includes bidirectional long short-term memory (BiLSTM) and multilayer perceptron (MLP) classifiers, with a decision tree (DT) classifier finalizing the decision-making process. The proposed system has been evaluated using a public IoT network dataset with an accomplished accuracy of 99.6%. The system has achieved results comparable to those of other systems that are more complex. The obtained results demonstrate the superior performance of the proposed ensemble learning-based system in comparison to conventional network-flow-based intrusion detection systems.",

keywords = "BiLSTM, ensemble learning, Internet of Things security, intrusion detection systems, MLP, network flow",

author = "Alani, {Mohammed M.} and Awad, {Ali Ismail} and Ezedin Barka",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024 ; Conference date: 02-09-2024 Through 04-09-2024",

year = "2024",

doi = "10.1109/CSR61664.2024.10679427",

language = "English",

series = "Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "1--8",

booktitle = "Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024",

address = "United States",

}

TY - GEN

T1 - A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things

AU - Alani, Mohammed M.

AU - Awad, Ali Ismail

AU - Barka, Ezedin

PY - 2024

Y1 - 2024

N2 - The applications of the Internet of Things (IoT) have grown significantly both in scope and complexity. IoT devices are becoming an integral part of our daily lives. This significant growth in IoT adoption is accompanied by a substantial increase in the interest of malicious actors. IoT devices are a preferred target for malicious actors due to their inherent vulnerabilities and limited computational resources, which make them difficult to protect and secure. This study introduces a novel ensemble learning-based intrusion detection system (IDS) using network flow features. The goal of the proposed system is to achieve both simplicity and high detection accuracy. The novelty behind the system lies in using a new feature called 'history', extracted from flow information, combined with traditional features. The core classification engine includes bidirectional long short-term memory (BiLSTM) and multilayer perceptron (MLP) classifiers, with a decision tree (DT) classifier finalizing the decision-making process. The proposed system has been evaluated using a public IoT network dataset with an accomplished accuracy of 99.6%. The system has achieved results comparable to those of other systems that are more complex. The obtained results demonstrate the superior performance of the proposed ensemble learning-based system in comparison to conventional network-flow-based intrusion detection systems.

AB - The applications of the Internet of Things (IoT) have grown significantly both in scope and complexity. IoT devices are becoming an integral part of our daily lives. This significant growth in IoT adoption is accompanied by a substantial increase in the interest of malicious actors. IoT devices are a preferred target for malicious actors due to their inherent vulnerabilities and limited computational resources, which make them difficult to protect and secure. This study introduces a novel ensemble learning-based intrusion detection system (IDS) using network flow features. The goal of the proposed system is to achieve both simplicity and high detection accuracy. The novelty behind the system lies in using a new feature called 'history', extracted from flow information, combined with traditional features. The core classification engine includes bidirectional long short-term memory (BiLSTM) and multilayer perceptron (MLP) classifiers, with a decision tree (DT) classifier finalizing the decision-making process. The proposed system has been evaluated using a public IoT network dataset with an accomplished accuracy of 99.6%. The system has achieved results comparable to those of other systems that are more complex. The obtained results demonstrate the superior performance of the proposed ensemble learning-based system in comparison to conventional network-flow-based intrusion detection systems.

KW - BiLSTM

KW - ensemble learning

KW - Internet of Things security

KW - intrusion detection systems

KW - MLP

KW - network flow

UR - http://www.scopus.com/inward/record.url?scp=85206158889&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85206158889&partnerID=8YFLogxK

U2 - 10.1109/CSR61664.2024.10679427

DO - 10.1109/CSR61664.2024.10679427

M3 - Conference contribution

AN - SCOPUS:85206158889

T3 - Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

SP - 1

EP - 8

BT - Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

Y2 - 2 September 2024 through 4 September 2024

ER -

A Hybrid Ensemble Learning-Based Intrusion Detection System for the Internet of Things

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this