Bidirectional LSTM autoencoder for sequence based anomaly detection in cyber security.
| dc.contributor.author | Chawla, Ashima | |
| dc.contributor.author | Jacob, Paul | |
| dc.contributor.author | Lee, Brian | |
| dc.contributor.author | Fallon, Sheila | |
| dc.date.accessioned | 2020-04-29T14:01:35Z | |
| dc.date.available | 2020-04-29T14:01:35Z | |
| dc.date.copyright | 2019 | |
| dc.date.issued | 2019 | |
| dc.identifier.citation | Chawla, A., Jacob, P., Lee, B., Fallon, S. (2019). Bidirectional LSTM autoencoder for sequence based anomaly detection in cyber security. International Journal of Simulation -- Systems, Science & Technology. 20(5): 1-6. DOI: 10.5013/IJSSST.a.20.05.07 | en_US |
| dc.identifier.issn | 1473-804X | |
| dc.identifier.issn | 1473-8031 | |
| dc.identifier.other | Articles - Software Research Institute AIT | en_US |
| dc.identifier.uri | http://research.thea.ie/handle/20.500.12065/3154 | |
| dc.description.abstract | Cyber-security is concerned with protecting information, a vital asset in today’s world. The volume of data that is generated can be usefully analyzed when cyber-security systems are effectively implemented with the aid of software support. Our approach is to determine normal behavior of a system based on sequences of system call traces made by the kernel processes in the system. This paper describes a robust and computationally efficient anomaly based host based intrusion detection system using an Encoder-Decoder mechanism. Using CuDNNLSTM networks, it is possible to obtain a set of comparable results with reduced training times. The Bidirectional Encoder and a unidirectional Decoder is trained on normal call sequences in the ADFA-LD dataset. Intrusion Detection is evaluated based on determining the probability of a sequence being reconstructed by the model | en_US |
| dc.format | en_US | |
| dc.language.iso | en | en_US |
| dc.publisher | United Kingdom Simulation Society | en_US |
| dc.relation.ispartof | International Journal of Simulation -- Systems, Science & Technology | en_US |
| dc.rights | Attribution-NonCommercial-NoDerivs 3.0 Ireland | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/ie/ | * |
| dc.subject | Autoencoders | en_US |
| dc.subject | CuDNNLSTM | en_US |
| dc.subject | Embeddings | en_US |
| dc.subject | Host based intrusion | en_US |
| dc.subject | System call | en_US |
| dc.title | Bidirectional LSTM autoencoder for sequence based anomaly detection in cyber security. | en_US |
| dc.type | Article | en_US |
| dc.contributor.sponsor | This project reported in this paper has received funding from the European Union Horizon 2020 research and innovation programme under grant agreement No. 700071 for the PROTECTIVE project. | en_US |
| dc.description.peerreview | yes | en_US |
| dc.identifier.doi | doi: 10.5013/IJSSST.a.20.05.07 | |
| dc.identifier.orcid | https://orcid.org/0000-0001-5933-3107 | |
| dc.identifier.orcid | https://orcid.org/0000-0001-5090-2756 | |
| dc.identifier.orcid | https://0000-0002-8475-4074 | |
| dc.identifier.orcid | https://orcid.org/0000-0001-6874-5699 | |
| dc.rights.access | Open Access | en_US |
| dc.subject.department | Software Research Institute AIT | en_US |
Files in this item
This item appears in the following Collection(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-NoDerivs 3.0 Ireland