With the increasing dependency of daily life over computer networks, the importance of these networks security becomes prominent. Different intrusion attacks to networks have been designed and the attackers are working on improving them. Thus the ability to detect intrusion with limited number of labeled data is desirable to provide networks with higher level of security. In this paper we design an intrusion detection system based on a deep neural network. The proposed system is based on self-supervised contrastive learning where a huge amount of unlabeled data can be used to generate informative representation suitable for various downstream tasks with limited number of labeled data. Using different experiments, we have shown that the proposed system presents an accuracy of 94.05% over the UNSW-NB15 dataset, an improvement of 4.22% in comparison to previous method based on self-supervised learning. Our simulations have also shown impressive results when the size of labeled training data is limited. The performance of the resulting Encoder Block trained on UNSW-NB15 dataset has also been tested on other datasets for representation extraction which shows competitive results in downstream tasks.
翻译:随着人们日常生活对计算机网络的依赖性越来越高,网络安全的重要性变得日益突出。针对网络的不同入侵攻击已被设计出来,攻击者正在努力提高它们的效果。因此,使用少量标记数据来检测入侵的能力对提供更高级别的网络安全至关重要。在本文中,我们设计了一种基于深度神经网络的入侵检测系统。所提出的系统基于自监督对比学习,可以使用大量未标记的数据生成适用于各种下游任务的信息表示,同时具有有限的标记数据。通过不同的实验,我们已经证明所提出的系统在UNSW-NB15数据集上的准确度为94.05%,比基于自监督学习的先前方法提高了4.22%。我们的模拟还显示了在标记训练数据的规模有限时,所得的编码器块的性能。在各个样本数据的表示提取方面,我们还在其他数据集中测试了所得到的编码器块的性能,结果表现出具有竞争力的结果。