Traffic Anomaly Detection Based on Improved Pigeon Inspired Optimizer and #br#
Pyramid Convolution#br#

Journal of Information Security Reserach ›› 2024, Vol. 10 ›› Issue (12): 1107-.

Previous Articles Next Articles

Traffic Anomaly Detection Based on Improved Pigeon Inspired Optimizer and #br# Pyramid Convolution#br#

Chen Hong1, Lu Jianbo1, Jin Haibo1, Wu Cong2, and Cheng Mingjia1

1(College of Software, Liaoning Technical University, Huludao, Liaoning 125105)
2(Academy of Science and Technology, Liaoning Technical University, Fuxin, Liaoning 123000)

Online:2024-12-25 Published:2024-12-25

基于改进鸽群算法和金字塔卷积的流量异常检测

陈虹1卢健波1金海波1武聪2程明佳1

1(辽宁工程技术大学软件学院辽宁葫芦岛125105)
2(辽宁工程技术大学科学技术研究院辽宁阜新123000)

通讯作者: 卢健波硕士研究生.主要研究方向为网络安全. 13009443727@163.com
作者简介:陈虹硕士，副教授.主要研究方向为网络安全与信息安全. chh3188@163.com 卢健波硕士研究生.主要研究方向为网络安全. 13009443727@163.com 金海波博士，副教授.主要研究方向为随机过程、复杂网络计算. jinhaibo@Intu.edu.cn 武聪博士，讲师.主要研究方向为电子商务、数据分析与智能决策. fxwucong@163.com 程明佳硕士研究生.主要研究方向为网络安全. chengmingjia1999@163.com

Abstract

Abstract: The Improved Pigeon Inspired Optimizer (IPIO) and Pyramid Convolution Neural Network (PyConv) are the foundation of a traffic anomaly detection approach that aims to address the issues of a high number of redundant features in network traffic and the low detection accuracy of machine learning methods. Firstly, a feature selection method based on IPIO is designed to reduce feature redundancy. The pigeon group is initialized to increase population quality and quicken convergence by estimating the feature set’s information gain rate. The present ideal solution is modified at random using a twostage mutation process, which also looks for solutions close to it to prevent local optimum formation. Second, deep feature extraction is implemented using PyConv. PyConv is made to use multiscale convolution kernels to extract features of various sizes and fuse them to create new features. Finally, the classification is realized by Softmax classifier to improve the accuracy of traffic anomaly detection. Experimental results on the UNSWNB15 dataset show that the proposed method significantly reduces redundant features while improving accuracy.

Key words: anomaly detection, improved pigeon inspired optimizer, pyramid convolution, feature selection, feature extraction

摘要： 针对网络流量中存在大量冗余特征以及机器学习方法检测准确率低的问题，提出一种基于改进鸽群算法(improved pigeon inspired optimizer, IPIO)和金字塔卷积网络(pyramid convolution neural network，PyConv)的流量异常检测方法.首先设计基于IPIO的特征选择方法，降低特征冗余性.通过计算特征集的信息增益率初始化鸽群提高种群质量，加快收敛速度；采用2阶段变异随机修改当前最优解的1个分量，在当前最优解的附近进行搜索，避免陷入局部最优.其次采用PyConv实现深度特征提取，PyConv设计以多尺度的卷积核提取不同大小的特征并进行融合得到新特征.最后通过Softmax分类器实现分类，提升流量异常检测的精度.在UNSWNB15数据集上的实验结果表明，所提方法在提升准确率的同时显著地减少了冗余特征.

关键词: 异常检测, 改进鸽群算法, 金字塔卷积, 特征选择, 特征提取

CLC Number:

TP393

陈虹, 卢健波, 金海波, 武聪, 程明佳, . 基于改进鸽群算法和金字塔卷积的流量异常检测[J]. 信息安全研究, 2024, 10(12): 1107-.

References

［1］He J, Wang X, Song Y, et al. A multiscale intrusion detection system based on pyramid depthwise separable convolution neural network［J］. Neurocomputing, 2023, 530: 4859［2］Pan H, Chen S, Xiong H. A highdimensional feature selection method based on modified Gray Wolf Optimization［JOL］. 2023 ［20240305］. https:doi.org10.1016j.asoc.2023.110031［3］Agrawal R K, Kaur B, Sharma S. Quantum based whale optimization algorithm for wrapper feature selection［J］. Applied Soft Computing, 2020, 89: 106092［4］Got A, Moussaoui A, Zouache D. Hybrid filterwrapper feature selection using whale optimization algorithm: A multiobjective approach［J］. Expert Systems with Applications, 2021, 183: 115312［5］Maldonado J, Riff M C, Neveu B. A review of recent approaches on wrapper feature selection for intrusion detection［JOL］. 2022 ［20240305］. https:doi.org10.1016j.eswa.2022.116822［6］Alzaqebah A, Aljarah I, AlKadi O, et al. A modified grey wolf optimization algorithm for an intrusion detection system［J］. Mathematics, 2022, 10(6): 116［7］张天月, 陈伟, 刘宇啸. 基于多尺度时空残差网络的入侵检测方法［J］. 信息安全研究, 2023, 9(11): 10451053［8］Alzubi Q M, Anbar M, Sanjalawe Y, et al. Intrusion detection system based on hybridizing a modified binary grey wolf optimization and particle swarm optimization［J］. Expert Systems with Applications, 2022, 204: 117597［9］Alghanam O A, Almobaideen W, Saadeh M, et al. An improved PIO feature selection algorithm for IoT network intrusion detection system based on ensemble learning［J］. Expert Systems with Applications, 2023, 213: 118745［10］Vijayanand R, Devaraj D. A novel feature selection method using whale optimization algorithm and genetic operators for intrusion detection system in wireless mesh network［J］. IEEE Access, 2020, 8: 5684756854［11］Ahmad J, Shah S A, Latif S, et al. DRaNN_PSO: A deep random neural network with particle swarm optimization for intrusion detection in the industrial Internet of things［J］. Journal of King Saud UniversityComputer and Information Sciences, 2022, 34(10): 81128121 ［12］Pingale S V, Sutar S R. Remora whale optimizationbased hybrid deep learning for network intrusion detection using CNN features［J］. Expert Systems with Applications, 2022, 210: 118476［13］Jia H, Liu J, Zhang M, et al. Network intrusion detection based on IEDBN model［J］. Computer Communications, 2021, 178: 131140［14］Alazzam H, Sharieh A, Sabri K E. A feature selection algorithm for intrusion detection system based on pigeon inspired optimizer［J］. Expert Systems with Applications, 2020, 148: 113249［15］Alazab M, Khurma R A, Awajan A, et al. A new intrusion detection system based on MothFlame Optimizer algorithm［J］. Expert Systems with Applications, 2022, 210: 118439［16］LopezMartin M, SanchezEsguevillas A, Arribas J I, et al. Supervised contrastive learning over prototypelabel embeddings for network intrusion detection［J］. Information Fusion, 2022, 79: 200228［17］Udas P B, Karim Md E, Roy K S. SPIDER: A shallow PCA based network intrusion detection system with enhanced recurrent neural networks［J］. Journal of King Saud UniversityComputer and Information Sciences, 2022, 34(10): 1024610272

[1]	. Container Anomaly Detection Based on Attention Mechanism and Multiscale Convolutional Neural Network [J]. Journal of Information Security Reserach, 2025, 11(1): 35-.
[2]	. Intrusion Detection Model Incorporating Contrastive Learning and Feature Selection [J]. Journal of Information Security Reserach, 2024, 10(5): 453-.
[3]	. Malicious Client Detection and Defense Method for Federated Learning [J]. Journal of Information Security Reserach, 2024, 10(2): 163-.
[4]	. Traffic Anomaly Detection Method by Secondorder Feature [J]. Journal of Information Security Reserach, 2024, 10(12): 1082-.
[5]	. Application of Behavior Anomaly Detection in Zero Trust Access #br# Control Method#br# [J]. Journal of Information Security Reserach, 2024, 10(10): 921-.
[6]	. Research on Blockchain Abnormal Transaction Detection Technology Based on LightGBM [J]. Journal of Information Security Reserach, 2023, 9(9): 877-.
[7]	. Research on Vulnerability Text Feature Classification Technology Based on BERT [J]. Journal of Information Security Reserach, 2023, 9(7): 687-.
[8]	. Research on Blockchain Anomaly Transaction Detection Technology Based on Stacking Ensemble Learning [J]. Journal of Information Security Reserach, 2023, 9(2): 98-.
[9]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 578-.
[10]	. Feature Selection Method for Electromagnetic Radiation Leakage of Crypto Chip [J]. Journal of Information Security Reserach, 2022, 8(12): 1214-.
[11]	. Study on DDoS Attack Detection Based on Biological Immune Principle [J]. Journal of Information Security Reserach, 2022, 8(11): 1129-.
[12]	. Research on Channel Fingerprinting-Based Wireless Device Identity Anomaly Detection Technology [J]. Journal of Information Security Reserach, 2021, 7(9): 849-855.
[13]	. Application of Feature Extraction Method Based on Reinforcement Learning in Attack Recognition [J]. Journal of Information Security Reserach, 2021, 7(4): 351-358.
[14]	. Research on Intrusion Detection Model based on Multiple Feature Selection Strategies [J]. Journal of Information Security Research, 2021, 7(3): 225-232.
[15]	. Obfuscated Android Malware Detection Based on Random Forest [J]. Journal of Information Security Research, 2021, 7(2): 126-135.

Traffic Anomaly Detection Based on Improved Pigeon Inspired Optimizer and #br# Pyramid Convolution#br#

基于改进鸽群算法和金字塔卷积的流量异常检测

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics