Atenção: Todas as denúncias são sigilosas e sua identidade será preservada.
Os campos nome e e-mail são de preenchimento opcional
Metadados | Descrição | Idioma |
---|---|---|
Autor(es): dc.contributor | University of Brasilía, Department of Electrical Engineering | - |
Autor(es): dc.contributor | University of Brasilía, Department of Electrical Engineering | - |
Autor(es): dc.contributor | University of São Paulo, Department of Computing System | - |
Autor(es): dc.contributor | University of Brasilía, Department of Electrical Engineering | - |
Autor(es): dc.contributor | Federal University of Ouro Preto, Department of Computer Science | - |
Autor(es): dc.contributor | State University of Southwest Bahia, Department of Exact and Technological Sciences | - |
Autor(es): dc.contributor | State University of Southwest Bahia, Department of Exact and Technological Sciences | - |
Autor(es): dc.creator | Oliveira, Jonathas Alves de | - |
Autor(es): dc.creator | Gonçalves, Vinícius Pereira | - |
Autor(es): dc.creator | Meneguette, Rodolfo I. | - |
Autor(es): dc.creator | Sousa Júnior, Rafael Timóteo de | - |
Autor(es): dc.creator | Guidoni, Daniel L. | - |
Autor(es): dc.creator | Oliveira, José Carlos Martins | - |
Autor(es): dc.creator | Rocha Filho, Geraldo Pereira | - |
Data de aceite: dc.date.accessioned | 2024-10-23T15:52:32Z | - |
Data de disponibilização: dc.date.available | 2024-10-23T15:52:32Z | - |
Data de envio: dc.date.issued | 2024-03-21 | - |
Data de envio: dc.date.issued | 2024-03-21 | - |
Data de envio: dc.date.issued | 2022 | - |
Fonte completa do material: dc.identifier | http://repositorio2.unb.br/jspui/handle/10482/48015 | - |
Fonte completa do material: dc.identifier | https://doi.org/10.1016/j.comnet.2023.110010 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0009-0006-8034-4795 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0000-0002-3771-2605 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0000-0003-2982-4006 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0000-0003-1101-3029 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0000-0002-1953-9132 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0000-0003-2148-4502 | - |
Fonte completa do material: dc.identifier | https://orcid.org/0000-0001-6795-2768 | - |
Fonte: dc.identifier.uri | http://educapes.capes.gov.br/handle/capes/894279 | - |
Descrição: dc.description | The rise of IoT networks has presented fresh challenges in terms of scalability and security for distributed Network Intrusion Detection Systems (NIDS) due to privacy concerns. While some progress has been made in addressing these challenges, there are still unanswered questions regarding how to achieve a balance between performance and robustness to ensure privacy in a distributed manner. Additionally, there is a need to develop a reliable and scalable architecture for distributed NIDS that can be effectively deployed in various IoT scenarios. These questions about robustness relied mainly on choosing privacy-secured and distributed Machine Learning techniques. In this work, we propose the F-NIDS, an intrusion detector that utilizes federated artificial intelligence and asynchronous communication techniques between system entities to provide horizontal scalability, along with differential privacy techniques to address data confidentiality concerns. The architecture of F-NIDS is designed to be adaptable for usage in IoT networks, suited to be used in cloud or fog-based environments. Results from our experiments have shown that the confidential detection model employed in F-NIDS – considering multi-class accuracy, binary accuracy, precision, and recall metrics – was capable of predicting and determining the nature of attacks when they occur. In order to determine optimal parameters that strike a balance between data privacy and classification performance, three strategies were employed, each evaluated for its corresponding robustness performance. Firstly, models were trained with varying Gaussian noise values, and subjected to membership inference black box rule-based attacks. Secondly, regular membership inference black box attacks were performed, utilizing different stolen samples with varying sizes to determine the maximum amount of data that could be securely stored on the detection agents for training tasks. Lastly, the robustness of the trained models was evaluated against a model inversion attack, and the results were compared through graphical comparisons. Based on these evaluations, Gaussian noise level and sample size values of 21 were obtained for each detection agent in the system, with sample sizes ranging from 10K to 25K. | - |
Descrição: dc.description | Faculdade de Tecnologia (FT) | - |
Descrição: dc.description | Departamento de Engenharia Elétrica (FT ENE) | - |
Descrição: dc.description | Programa de Pós-Graduação em Engenharia Elétrica | - |
Idioma: dc.language | pt_BR | - |
Publicador: dc.publisher | Elsevier B.V. | - |
Direitos: dc.rights | Acesso Restrito | - |
Palavras-chave: dc.subject | Sistema de detecção de intrusão (IDS) | - |
Palavras-chave: dc.subject | Sistemas de segurança | - |
Palavras-chave: dc.subject | Computação | - |
Palavras-chave: dc.subject | Aprendizado de máquina | - |
Título: dc.title | F-NIDS : a network intrusion detection system based on federated learning | - |
Tipo de arquivo: dc.type | livro digital | - |
Aparece nas coleções: | Repositório Institucional – UNB |
O Portal eduCAPES é oferecido ao usuário, condicionado à aceitação dos termos, condições e avisos contidos aqui e sem modificações. A CAPES poderá modificar o conteúdo ou formato deste site ou acabar com a sua operação ou suas ferramentas a seu critério único e sem aviso prévio. Ao acessar este portal, você, usuário pessoa física ou jurídica, se declara compreender e aceitar as condições aqui estabelecidas, da seguinte forma: