Author
Listed:
- Iftikhar Ahmad
(Faculty of Computing and Information Technology, King Abdulaziz University, Jeddah 21589, Saudi Arabia)
- Muhammad Imran
(Institute of Innovation, Science and Sustainability, Federation University Australia, 100 Clyde Rd, Berwick, VIC 3806, Australia)
- Abdul Qayyum
(National Heart and Lung Institute, Imperial College, London SW7 2BX, UK)
- Muhammad Sher Ramzan
(Faculty of Computing and Information Technology, King Abdulaziz University, Jeddah 21589, Saudi Arabia)
- Madini O. Alassafi
(Faculty of Computing and Information Technology, King Abdulaziz University, Jeddah 21589, Saudi Arabia)
Abstract
Detecting cyber intrusions in network traffic is a tough task for cybersecurity. Current methods struggle with the complexity of understanding patterns in network data. To solve this, we present the Hybrid Deep Learning Intrusion Detection Model (HD-IDM), a new way that combines GRU and LSTM classifiers. GRU is good at catching quick patterns, while LSTM handles long-term ones. HD-IDM blends these models using weighted averaging, boosting accuracy, especially with complex patterns. We tested HD-IDM on four datasets: CSE-CIC-IDS2017, CSE-CIC-IDS2018, NSL KDD, and CIC-DDoS2019. The HD-IDM classifier achieved remarkable performance metrics on all datasets. It attains an outstanding accuracy of 99.91%, showcasing its consistent precision across the dataset. With an impressive precision of 99.62%, it excels in accurately categorizing positive cases, crucial for minimizing false positives. Additionally, maintaining a high recall of 99.43%, it effectively identifies the majority of actual positive cases while minimizing false negatives. The F1-score of 99.52% emphasizes its robustness, making it the top choice for classification tasks requiring precision and reliability. It is particularly good at ROC and precision/recall curves, discriminating normal and harmful network activities. While HD-IDM is promising, it has limits. It needs labeled data and may struggle with new intrusion methods. Future work should find ways to handle unlabeled data and adapt to emerging threats. Also, making HD-IDM work faster for real-time use and dealing with scalability challenges is key for its broader use in changing network environments.
Suggested Citation
Iftikhar Ahmad & Muhammad Imran & Abdul Qayyum & Muhammad Sher Ramzan & Madini O. Alassafi, 2023.
"An Optimized Hybrid Deep Intrusion Detection Model (HD-IDM) for Enhancing Network Security,"
Mathematics, MDPI, vol. 11(21), pages 1-24, October.
Handle:
RePEc:gam:jmathe:v:11:y:2023:i:21:p:4501-:d:1271596
Download full text from publisher
Corrections
All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jmathe:v:11:y:2023:i:21:p:4501-:d:1271596. See general information about how to correct material in RePEc.
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
We have no bibliographic references for this item. You can help adding them by using this form .
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .
Please note that corrections may take a couple of weeks to filter through
the various RePEc services.