Journal article Open Access

Network Traffic Anomaly Detection via Deep Learning

Konstantina Fotiadou; Terpsichori-Helen Velivassaki; Artemis Voulkidis; Dimitrios Skias; Sofia Tsekeridou; Theodore Zahariadis

Network intrusion detection is a key pillar towards the sustainability and normal operation of information systems. Complex threat patterns and malicious actors are able to cause severe damages to cyber-systems. In this work, we propose novel Deep Learning formulations for detecting threats and alerts on network logs that were acquired by pfSense, an open-source software that acts as firewall on FreeBSD operating system. pfSense integrates several powerful security services such as firewall, URL filtering, and virtual private networking among others. The main goal of this study is to analyse the logs that were acquired by a local installation of pfSense software, in order to provide a powerful and efficient solution that controls traffic flow based on patterns that are automatically learnt via the proposed, challenging DL architectures. For this purpose, we exploit the Convolutional Neural Networks (CNNs), and the Long Short Term Memory Networks (LSTMs) in order to construct robust multi-class classifiers, able to assign each new network log instance that reaches our system into its corresponding category. The performance of our scheme is evaluated by conducting several quantitative experiments, and by comparing to state-of-the-art formulations.

Files (2.8 MB)
Name Size
information-12-00215.pdf
md5:6a8d492b5361cbbead3a42a6a4db9bc1
2.8 MB Download
33
30
views
downloads
Views 33
Downloads 30
Data volume 82.6 MB
Unique views 29
Unique downloads 25

Share

Cite as