Combining dynamic and static host intrusion detection features using variational long short-term memory recurrent autoencoder
-
Published:2024
Issue:1
Volume:20
Page:34-51
-
ISSN:1811-9905
-
Container-title:Vestnik of Saint Petersburg University. Applied Mathematics. Computer Science. Control Processes
-
language:
-
Short-container-title:Vestnik SPbSU. Applied Mathematics. Computer Science. Control Processes
Author:
,Nguyen Viet Hung,Tran Nguyen Ngoc,
Abstract
Despite the many advantages offered by Host Intrusion Detection Systems (HIDS), they are rarely adopted in mainstream cybersecurity strategies. Unlike Network Intrusion Detection Systems, a HIDS is the last layer of defence between potential attacks and the underlying OSs. One of the main reasons behind this is its poor capabilities to adequately protect against zero-day attacks. With the rising number of zero-day exploits and related attacks, this is an increasingly imperative requirement for a modern HIDS. In this paper variational long short-term memory — recurrent autoencoder approach which improves zero-day attack detection is proposed. We have practically implemented our model using TensorFlow and evaluated its performance using benchmark ADFA-LD and UNM datasets. We have also compared the results against those from notable publications in the area.
Publisher
Saint Petersburg State University