Article Details

Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

A Multiagent and Machine Learning based Hybrid NIDS for Known and Unknown Cyber-attacks

Author 1: Said OUIAZZANE
Author 2: Malika ADDOU
Author 3: Fatimazahra BARRAMOU

Download PDF

Digital Object Identifier (DOI) : 10.14569/IJACSA.2021.0120843

Article Published in International Journal of Advanced Computer Science and Applications(IJACSA), Volume 12 Issue 8, 2021.

Abstract: The objective of this paper is to propose a hybrid Network Intrusion Detection System (NIDS) for the detection of cyber-attacks that may target modern computer networks. Indeed, in the era of technological evolution that the world is currently experiencing, hackers are constantly inventing new attack mechanisms that can bypass traditional security systems. Thus, NIDS are now an essential security brick to be deployed in corporate networks to detect known and zero-day attacks. In this research work, we propose a hybrid NIDS model based on the use of both a signature-based NIDS and an anomaly detection NIDS. The proposed system is based on agent technology, SNORT signature-based NIDS, machine learning techniques and the CICIDS2017 dataset is used for training and evaluation purposes. Thus, the CICIDS2017 dataset has undergone several pre-processing actions, namely, dataset cleaning, and dataset balancing as well as reducing the number of attributes (from 79 to 33 attributes). In addition, a set of machine learning algorithms are used, such as decision tree, random forest, Naive Bayes and multilayer perceptron, and are evaluated using some metrics, such as recall, precision, F-measure and accuracy. The detection methods used give very satisfactory results in terms of modeling benign network traffic and the accuracy reaches 99.9% for some algorithms.

Keywords: Intrusion detection; zero-day attacks; machine learning; multi-agent systems; security

Said OUIAZZANE, Malika ADDOU and Fatimazahra BARRAMOU, “A Multiagent and Machine Learning based Hybrid NIDS for Known and Unknown Cyber-attacks” International Journal of Advanced Computer Science and Applications(IJACSA), 12(8), 2021. http://dx.doi.org/10.14569/IJACSA.2021.0120843

@article{OUIAZZANE2021,
title = {A Multiagent and Machine Learning based Hybrid NIDS for Known and Unknown Cyber-attacks},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2021.0120843},
url = {http://dx.doi.org/10.14569/IJACSA.2021.0120843},
year = {2021},
publisher = {The Science and Information Organization},
volume = {12},
number = {8},
author = {Said OUIAZZANE and Malika ADDOU and Fatimazahra BARRAMOU}
}

IJACSA

Upcoming Conferences

Future of Information and Communication Conference (FICC) 2023

2-3 March 2023

Computing Conference 2023

13-14 July 2023

IntelliSys 2022

1-2 September 2022

Future Technologies Conference (FTC) 2022

20-21 October 2022