F-NIDS : a network intrusion detection system based on federated learning

Registro completo de metadados
MetadadosDescriçãoIdioma
Autor(es): dc.contributorUniversity of Brasilía, Department of Electrical Engineering-
Autor(es): dc.contributorUniversity of Brasilía, Department of Electrical Engineering-
Autor(es): dc.contributorUniversity of São Paulo, Department of Computing System-
Autor(es): dc.contributorUniversity of Brasilía, Department of Electrical Engineering-
Autor(es): dc.contributorFederal University of Ouro Preto, Department of Computer Science-
Autor(es): dc.contributorState University of Southwest Bahia, Department of Exact and Technological Sciences-
Autor(es): dc.contributorState University of Southwest Bahia, Department of Exact and Technological Sciences-
Autor(es): dc.creatorOliveira, Jonathas Alves de-
Autor(es): dc.creatorGonçalves, Vinícius Pereira-
Autor(es): dc.creatorMeneguette, Rodolfo I.-
Autor(es): dc.creatorSousa Júnior, Rafael Timóteo de-
Autor(es): dc.creatorGuidoni, Daniel L.-
Autor(es): dc.creatorOliveira, José Carlos Martins-
Autor(es): dc.creatorRocha Filho, Geraldo Pereira-
Data de aceite: dc.date.accessioned2024-10-23T15:52:32Z-
Data de disponibilização: dc.date.available2024-10-23T15:52:32Z-
Data de envio: dc.date.issued2024-03-21-
Data de envio: dc.date.issued2024-03-21-
Data de envio: dc.date.issued2022-
Fonte completa do material: dc.identifierhttp://repositorio2.unb.br/jspui/handle/10482/48015-
Fonte completa do material: dc.identifierhttps://doi.org/10.1016/j.comnet.2023.110010-
Fonte completa do material: dc.identifierhttps://orcid.org/0009-0006-8034-4795-
Fonte completa do material: dc.identifierhttps://orcid.org/0000-0002-3771-2605-
Fonte completa do material: dc.identifierhttps://orcid.org/0000-0003-2982-4006-
Fonte completa do material: dc.identifierhttps://orcid.org/0000-0003-1101-3029-
Fonte completa do material: dc.identifierhttps://orcid.org/0000-0002-1953-9132-
Fonte completa do material: dc.identifierhttps://orcid.org/0000-0003-2148-4502-
Fonte completa do material: dc.identifierhttps://orcid.org/0000-0001-6795-2768-
Fonte: dc.identifier.urihttp://educapes.capes.gov.br/handle/capes/894279-
Descrição: dc.descriptionThe rise of IoT networks has presented fresh challenges in terms of scalability and security for distributed Network Intrusion Detection Systems (NIDS) due to privacy concerns. While some progress has been made in addressing these challenges, there are still unanswered questions regarding how to achieve a balance between performance and robustness to ensure privacy in a distributed manner. Additionally, there is a need to develop a reliable and scalable architecture for distributed NIDS that can be effectively deployed in various IoT scenarios. These questions about robustness relied mainly on choosing privacy-secured and distributed Machine Learning techniques. In this work, we propose the F-NIDS, an intrusion detector that utilizes federated artificial intelligence and asynchronous communication techniques between system entities to provide horizontal scalability, along with differential privacy techniques to address data confidentiality concerns. The architecture of F-NIDS is designed to be adaptable for usage in IoT networks, suited to be used in cloud or fog-based environments. Results from our experiments have shown that the confidential detection model employed in F-NIDS – considering multi-class accuracy, binary accuracy, precision, and recall metrics – was capable of predicting and determining the nature of attacks when they occur. In order to determine optimal parameters that strike a balance between data privacy and classification performance, three strategies were employed, each evaluated for its corresponding robustness performance. Firstly, models were trained with varying Gaussian noise values, and subjected to membership inference black box rule-based attacks. Secondly, regular membership inference black box attacks were performed, utilizing different stolen samples with varying sizes to determine the maximum amount of data that could be securely stored on the detection agents for training tasks. Lastly, the robustness of the trained models was evaluated against a model inversion attack, and the results were compared through graphical comparisons. Based on these evaluations, Gaussian noise level and sample size values of 21 were obtained for each detection agent in the system, with sample sizes ranging from 10K to 25K.-
Descrição: dc.descriptionFaculdade de Tecnologia (FT)-
Descrição: dc.descriptionDepartamento de Engenharia Elétrica (FT ENE)-
Descrição: dc.descriptionPrograma de Pós-Graduação em Engenharia Elétrica-
Idioma: dc.languagept_BR-
Publicador: dc.publisherElsevier B.V.-
Direitos: dc.rightsAcesso Restrito-
Palavras-chave: dc.subjectSistema de detecção de intrusão (IDS)-
Palavras-chave: dc.subjectSistemas de segurança-
Palavras-chave: dc.subjectComputação-
Palavras-chave: dc.subjectAprendizado de máquina-
Título: dc.titleF-NIDS : a network intrusion detection system based on federated learning-
Tipo de arquivo: dc.typelivro digital-
Aparece nas coleções:Repositório Institucional – UNB

Não existem arquivos associados a este item.