Deep Learning Approaches for Network Intrusion Detection
| dc.contributor.advisor | Xu, Shouhuai | |
| dc.contributor.author | Fernandez, Gabriel C. | |
| dc.contributor.committeeMember | White, Greg | |
| dc.contributor.committeeMember | Wu, Wenbo | |
| dc.creator.orcid | https://orcid.org/0000-0002-6552-7693 | |
| dc.date.accessioned | 2024-02-09T21:12:09Z | |
| dc.date.available | 2024-02-09T21:12:09Z | |
| dc.date.issued | 2019 | |
| dc.description | This item is available only to currently enrolled UTSA students, faculty or staff. To download, navigate to Log In in the top right-hand corner of this screen, then select Log in with my UTSA ID. | |
| dc.description.abstract | As the scale of cyber attacks and volume of network data increases exponentially, organizations must develop new ways of keeping their networks and data secure from the dynamic nature of evolving threat actors. With more security tools and sensors being deployed within the modern-day enterprise network, the amount of security event and alert data being generated continues to increase, making it more difficult to find the needle in the haystack. Organizations must rely on new techniques to assist and augment human analysts when dealing with the monitoring, prevention, detection, and response to cybersecurity events and potential attacks on their networks. The focus for this Thesis is on classifying network traffic flows as benign or malicious. The contribution of this work is two-fold. First, a feedforward fully connected Deep Neural Network (DNN) is used to train a Network Intrusion Detection System (NIDS) via supervised learning. Second, an autoencoder is used to detect and classify attack traffic via unsupervised learning in the absence of labeled malicious traffic. Deep neural network models are trained using two more recent intrusion detection datasets that overcome limitations of other intrusion detection datasets which have been commonly used in the past. Using these more recent datasets, deep neural networks are shown to be highly effective in performing supervised learning to detect and classify modern-day cyber attacks with a high degree of accuracy, high detection rate, and low false positive rate. In addition, an autoencoder is shown to be effective for anomaly detection. | |
| dc.description.department | Computer Science | |
| dc.format.extent | 115 pages | |
| dc.format.mimetype | application/pdf | |
| dc.identifier.isbn | 9781392181805 | |
| dc.identifier.uri | https://hdl.handle.net/20.500.12588/3587 | |
| dc.language | en | |
| dc.subject | anomaly detection | |
| dc.subject | cybersecurity | |
| dc.subject | deep learning | |
| dc.subject | deep neural network | |
| dc.subject | machine learning | |
| dc.subject | network intrusion detection | |
| dc.subject.classification | Computer science | |
| dc.title | Deep Learning Approaches for Network Intrusion Detection | |
| dc.type | Thesis | |
| dc.type.dcmi | Text | |
| dcterms.accessRights | pq_closed | |
| thesis.degree.department | Computer Science | |
| thesis.degree.grantor | University of Texas at San Antonio | |
| thesis.degree.level | Masters | |
| thesis.degree.name | Master of Science |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- Fernandez_utsa_1283M_12832.pdf
- Size:
- 5.59 MB
- Format:
- Adobe Portable Document Format