With the continuous development of industrial IoT (IIoT) technology, network security is becoming more and more important. And intrusion detection is an important part of its security. However, since the amount of attack traffic is very small compared to normal traffic, this imbalance makes intrusion detection in it very difficult. To address this imbalance, an intrusion detection system called pretraining Wasserstein generative adversarial network intrusion detection system (PWG-IDS) is proposed in this paper. This system is divided into two main modules: 1) In this module, we introduce the pretraining mechanism in the Wasserstein generative adversarial network with gradient penalty (WGAN-GP) for the first time, firstly using the normal network traffic to train the WGAN-GP, and then inputting the imbalance data into the pre-trained WGAN-GP to retrain and generate the final required data. 2) Intrusion detection module: We use LightGBM as the classification algorithm to detect attack traffic in IIoT networks. The experimental results show that our proposed PWG-IDS outperforms other models, with F1-scores of 99% and 89% on the 2 datasets, respectively. And the pretraining mechanism we proposed can also be widely used in other GANs, providing a new way of thinking for the training of GANs.
翻译:随着工业IoT(IIoT)技术的不断发展,网络安全正在变得越来越重要。入侵探测是其安全的一个重要部分。然而,由于攻击交通量与正常交通相比非常小,这种不平衡使得入侵探测非常困难。为了解决这一不平衡问题,本文件提议了一个入侵探测系统,称为Wasserstein 基因对抗性网络入侵探测系统(PWG-IDS),该系统分为两个主要模块:1)在这个模块中,我们首次在Wasserstein基因对抗网络中引入了培训前机制,使用梯度惩罚(WGAN-GP),首先利用正常网络交通来培训WGAN-GP,然后将不平衡数据输入预先训练过的WGAN-GP,以进行再培训并生成最终所需的数据。(2) 入侵探测模块:我们使用LightGBM作为分类算法来检测IIoT网络的攻击交通。实验结果表明,我们提议的PWG-IDS比其他模型要优,首先使用99%和89%的F-Corress,然后又广泛使用GAN机制。
相关内容
微信扫码咨询专知VIP会员