Using Autoencoder Feature Residuals to Improve Network Intrusion Detection
Public DepositedDownloadable Content
open in viewerNetwork intrusion detection is a constantly evolving field with researchers and practitioners constantly working to keep up with novel attacks and growing amounts of network data. Traditionally, signature-based techniques and deep packet inspection have been employed, however, the volume of data and complexity of network attacks has made these techniques overbearing and susceptible to zero-day attacks. For this reason, there has been a shift in focus to explore the power of deep learning anomaly-based methods to perform network intrusion detection. In this dissertation we develop and explore several deep learning techniques and their application to performing anomaly-based network intrusion detection. Central to the work is an exploration of the development of unique feature sets using autoencoder feature residuals which have traditionally been overlooked in favor of aggregate residuals. We show that using feature sets generated using autoencoder feature residuals provide an improvement in downstream classifier performance compared to an original feature set for network intrusion detection. In doing so, we find that these overlooked byproducts of anomaly-based methods can be used as a drop-in replacement for an original feature set, meeting or exceeding its performance.
- Creator
- Contributors
- Degree
- Unit
- Publisher
- Identifier
- etd-112577
- Advisor
- Orcid
- Committee
- Defense date
- Year
- 2023
- Sponsor
- Date created
- 2023-08-02
- Resource type
- Source
- etd-112577
- Rights statement
- Last modified
- 2023-08-23
Relations
- In Collection:
Items
Items
Thumbnail | Title | Visibility | Embargo Release Date | Actions |
---|---|---|---|---|
lewandowski_dissertation.pdf | Public | Download |
Permanent link to this page: https://digital.wpi.edu/show/cz30px183