Towards a Better Understanding of Machine Learning based Network Intrusion Detection Systems in Industrial Networks

Anne Borcherding; Anne Borcherding; Lukas Feldmann; Markus Karch; Ankush Meshram; Ankush Meshram; Jürgen Beyerer; Jürgen Beyerer; Jürgen Beyerer

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Towards a Better Understanding of Machine Learning based Network Intrusion Detection Systems in Industrial Networks

Topics: AI and Machine Learning for Security; Intrusion Detection and Response

In Proceedings of the 8th International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 314-325, 2022

Authors: Anne Borcherding ^{1

;

2} ; Lukas Feldmann ³ ; Markus Karch ¹ ; Ankush Meshram ^{2

;

4} and Jürgen Beyerer ^{1

;

2

;

4}

Affiliations: ¹ Fraunhofer Institute of Optronics, System Technologies and Image Exploitation IOSB, Fraunhofer Center for Machine Learning, Karlsruhe, Germany ; ² KASTEL Security Research Labs, Karlsruhe, Germany ; ³ Siemens AG, Germany ; ⁴ Vision and Fusion Laboratory (IES), Karlsruhe Institute of Technology (KIT), Karlsruhe, Germany

Keyword(s): Network Intrusion Detection, Machine Learning, Critical Infrastructure, Industrial Control Systems, Model Inspection.

Abstract: It is crucial in an industrial network to understand how and why a intrusion detection system detects, classifies, and reports intrusions. With the ongoing introduction of machine learning into the research area of intrusion detection, this understanding gets even more important since the used systems often appear as a black-box for the user and are no longer understandable in an intuitive and comprehensible way. We propose a novel approach to understand the internal characteristics of a machine learning based network intrusion detection system. This approach includes methods to understand which data sources the system uses, to evaluate whether the system uses linear or non-linear classification approaches, and to find out which underlying machine learning model is implemented in the system. Our evaluation on two publicly available industrial datasets shows that the detection of the data source and the differentiation between linear and non-linear models is possible with our approach . In addition, the identification of the underlying machine learning model can be accomplished with statistical significance for non-linear models. The information made accessible by our approach helps to develop a deeper understanding of the functioning of a network intrusion detection system, and contributes towards developing transparent machine learning based intrusion detection approaches. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.188.211.246

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Borcherding, A. ; Feldmann, L. ; Karch, M. ; Meshram, A. and Beyerer, J. (2022). Towards a Better Understanding of Machine Learning based Network Intrusion Detection Systems in Industrial Networks. In Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-553-1; ISSN 2184-4356, SciTePress, pages 314-325. DOI: 10.5220/0010795900003120

@conference{icissp22,
author={Anne Borcherding and Lukas Feldmann and Markus Karch and Ankush Meshram and Jürgen Beyerer},
title={Towards a Better Understanding of Machine Learning based Network Intrusion Detection Systems in Industrial Networks},
booktitle={Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP},
year={2022},
pages={314-325},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010795900003120},
isbn={978-989-758-553-1},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP
TI - Towards a Better Understanding of Machine Learning based Network Intrusion Detection Systems in Industrial Networks
SN - 978-989-758-553-1
IS - 2184-4356
AU - Borcherding, A.
AU - Feldmann, L.
AU - Karch, M.
AU - Meshram, A.
AU - Beyerer, J.
PY - 2022
SP - 314
EP - 325
DO - 10.5220/0010795900003120
PB - SciTePress