Towards Robust Learning using Diametrical Risk Minimization for Network Intrusion Detection

Date

2023-11-07

Authors

Journal Title

Journal ISSN

Volume Title

Publisher

IEEE

Abstract

Currently, deep neural networks show great promise in the detection of malicious network traffic at machine speed. However, these networks are typically trained using Empirical Risk Minimization (ERM), which is not robust to misclassified or altered training data. We propose applying Diametrical Risk Minimization (DRM), which is shown to lead to more robust optimization solutions, to train deep neural networks to classify malicious network traffic. Using two different network traffic datasets, we find that when state-of-the-art deep neural networks are trained on partially mislabeled data, utilizing DRM results in higher accuracy compared to equivalent models trained with ERM. More importantly, when models are tested against previously unseen cyber-attack types, models trained with DRM correctly identify the previously unseen cyber-attacks more often. We then show that these deep neural networks are computationally tractable to deploy in real-time on edge computing systems utilizing commercial-off-the-shelf hardware.

Description

Keywords

Training, Computational modeling, Artificial neural networks, Telecommunication traffic, Computer architecture, Data models, Robustness

Citation

K. J. McCollum, N. D. Bastian and J. O. Royset, "Towards Robust Learning using Diametrical Risk Minimization for Network Intrusion Detection," 2023 IEEE Conference on Dependable and Secure Computing (DSC), Tampa, FL, USA, 2023, pp. 1-8, doi: 10.1109/DSC61021.2023.10354173.

URI

https://hdl.handle.net/20.500.14216/1463

DOI

https://doi.org/10.1109/DSC61021.2023.10354173

Collections

Army Cyber Institute