@inproceedings{7c97591dde884ab491e6c69515a7dc46,
title = "A Neural Attention Model for Real-Time Network Intrusion Detection",
abstract = "The diversity and ever-evolving nature of network intrusion attacks has made defense a real challenge for security practitioners. Recent research in the domain of Network-based Intrusion Detection System has mainly focused on adopting a flow-based approach when extracting features from raw packets. One drawback of this is that attack detection can only be carried out after the flow has ended. In this work, we present a new technique based on the neural attention mechanism; unlike many existing solutions, our technique can be applied for real-time attack detection since it uses time slot-based features. The proposed solution is a modified version of the transformer model which has been proposed and used in the language translation domain. We conduct experiments on a dataset extracted from a recent repository network traffic containing several kinds of network attack. We use the {"}bidirectional LSTM{"} and {"}conditional random fields{"} models as baseline for comparison and our performance results demonstrate that the proposed solution significantly outperforms the two baselines in terms of precision, recall, and false positive rates. In addition, we show that our solution is more computationally efficient than the bidirectional LSTM model as a result of the removal of recurrent layers.",
keywords = "Attention model, Deep learning, Network intrusion detection, Network security",
author = "Mengxuan Tan and Alfonso Iacovazzi and Cheung, {Ngai Man Man} and Yuval Elovici",
note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 44th Annual IEEE Conference on Local Computer Networks, LCN 2019 ; Conference date: 14-10-2019 Through 17-10-2019",
year = "2019",
month = oct,
day = "1",
doi = "10.1109/LCN44214.2019.8990890",
language = "English",
series = "Proceedings - Conference on Local Computer Networks, LCN",
publisher = "Institute of Electrical and Electronics Engineers",
pages = "291--299",
editor = "Karl Andersson and Hwee-Pink Tan and Sharief Oteafy",
booktitle = "Proceedings of the 44th Annual IEEE Conference on Local Computer Networks, LCN 2019",
address = "United States",
}