Cybersecurity Intrusion Detection with Image Classification Model Using Hilbert Curve
Punyawat Jaroensiripong, Karin Sumongkayothin, Prarinya Siritanawan, Kazunori Kotani
2024
Abstract
Cybersecurity intrusion detection is crucial for protecting an online system from cyber-attacks. Traditional monitoring methods used in the Security Operation Center (SOC) are insufficient to handle the vast volume of traffic data, producing an overwhelming number of false alarms, and eventually resulting in the neglect of intrusion incidents. The recent integration of Machine Learning (ML) and Deep Learning (DL) into SOC monitoring systems has enhanced the intrusion detection capabilities by learning the patterns of network traffic data. Despite many ML methods implemented for intrusion detection, the Convolutional Neural Network (CNN), one of the most high-performing ML algorithms, has not been widely adopted for the intrusion detection systems. This research aims to explore the potentials of CNN implementation with the network data flows. Since the CNN was originally designed for image processing applications, it is necessary to convert the 1-dimensional network data flows into 2-dimensional image data. This research presents a novel approach to convert the network data flow into an image (flow-to-image) by the Hilbert curve mapping algorithm which can preserve the locality of the data. Then, we apply the converted images to the CNN-based intrusion detection system. Eventually, the proposed method and model can outperform the recent methods with 92.43% accuracy and 93.05% F1-score on the CIC-IDS2017 dataset, and 81.78% accuracy and 83.46% F1-score on the NSL-KDD dataset. In addition to the classification capability, the flow-to-image mapping algorithm can also visualize the characteristics of the network attack on the images visually, which can be an alternative monitoring approach for SOC.
DownloadPaper Citation
in Harvard Style
Jaroensiripong P., Sumongkayothin K., Siritanawan P. and Kotani K. (2024). Cybersecurity Intrusion Detection with Image Classification Model Using Hilbert Curve. In Proceedings of the 19th International Joint Conference on Computer Vision, Imaging and Computer Graphics Theory and Applications - Volume 2: VISAPP; ISBN 978-989-758-679-8, SciTePress, pages 325-332. DOI: 10.5220/0012306100003660
in Bibtex Style
@conference{visapp24,
author={Punyawat Jaroensiripong and Karin Sumongkayothin and Prarinya Siritanawan and Kazunori Kotani},
title={Cybersecurity Intrusion Detection with Image Classification Model Using Hilbert Curve},
booktitle={Proceedings of the 19th International Joint Conference on Computer Vision, Imaging and Computer Graphics Theory and Applications - Volume 2: VISAPP},
year={2024},
pages={325-332},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012306100003660},
isbn={978-989-758-679-8},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 19th International Joint Conference on Computer Vision, Imaging and Computer Graphics Theory and Applications - Volume 2: VISAPP
TI - Cybersecurity Intrusion Detection with Image Classification Model Using Hilbert Curve
SN - 978-989-758-679-8
AU - Jaroensiripong P.
AU - Sumongkayothin K.
AU - Siritanawan P.
AU - Kotani K.
PY - 2024
SP - 325
EP - 332
DO - 10.5220/0012306100003660
PB - SciTePress