Research on Deep Learningbased Spatiotemporal Feature Fusion  Network Intrusion Detection Model

Journal of Information Security Reserach ›› 2025, Vol. 11 ›› Issue (2): 122-.

Previous Articles Next Articles

Research on Deep Learningbased Spatiotemporal Feature Fusion Network Intrusion Detection Model

Li Congcong1,2, Yuan Zilong1, and Teng Guifa1,2

1(College of Information Science and Technology, Hebei Agricultural University, Baoding, Hebei 071001)
2(Hebei Key Laboratory of Agricultural Big Data (Hebei Agricultural University), Baoding, Hebei 071001)

Online:2025-02-20 Published:2025-02-20

基于深度学习的时空特征融合网络入侵检测模型研究

李聪聪1,2袁子龙1滕桂法1,2

1(河北农业大学信息科学与技术学院河北保定071001)
2(河北省农业大数据重点实验室(河北农业大学)河北保定071001)

通讯作者: 李聪聪博士，教授.主要研究方向为深度学习、智能信息检测与处理. hebaulcc@126.com
作者简介:李聪聪博士，教授.主要研究方向为深度学习、智能信息检测与处理. hebaulcc@126.com 袁子龙硕士研究生.主要研究方向为网络与信息安全. l1976155463@gmail.com 滕桂法博士，二级教授.主要研究方向为人工智能与大数据、网络安全、农业大数据技术. tguifa@hebau.edu.cn

Abstract

Abstract: As the number of network attacks increases, network intrusion detection systems are becoming increasingly important in maintaining network security. Most studies have used deep learning approaches for network intrusion detection but have not fully utilized the features of traffic from multiple perspectives. Additionally, these studies often suffer from the use of outdated experimental datasets. In this paper, a parallelstructured DSCInceptionBiLSTM network is proposed to evaluate the designed network model using stateoftheart datasets. The model consists of two branches, network traffic image, and text anomaly traffic detection. Spatial and temporal features of traffic are extracted by improved convolutional neural networks and recurrent neural networks, respectively. Finally, network intrusion detection is achieved by fusing spatiotemporal features. The experimental results show that our model achieves 99.96%, 99.19%, and 99.95% accuracy on the three datasets of CICIDS 2017, CSECICIDS 2018 and CICDDoS 2019, respectively, effectively classifying the anomalous traffic with high precision and meeting the requirements of intrusion detection system.

Key words: network intrusion detection, deep learning, feature fusion, depthwise separable convolution, Inception

摘要： 随着网络攻击日益增多，网络入侵检测系统在维护网络安全方面也越来越重要.目前多数研究采用深度学习的方法进行网络入侵检测，但未充分从多个角度利用流量的特征，同时存在实验数据集过于陈旧的问题.提出了一种并行结构的DSCInceptionBiLSTM网络，使用最新的数据集评估所设计的网络模型.该模型包括网络流量图像和文本异常流量检测2个分支，分别通过改进的卷积神经网络和循环神经网络提取流量的空间特征和时序特征.最后通过融合时空特征实现网络入侵检测.实验结果表明，在CICIDS2017,CSECICIDS2018,CICDDoS2019这3个数据集上，该模型分别达到了99.96%,99.19%,99.95%的准确率，能够对异常流量进行高精度分类，满足入侵检测系统的要求.

关键词: 网络入侵检测, 深度学习, 特征融合, 深度可分离卷积, Inception

CLC Number:

TP309

李聪聪, 袁子龙, 滕桂法, . 基于深度学习的时空特征融合网络入侵检测模型研究[J]. 信息安全研究, 2025, 11(2): 122-.

References

［1］Lin Wenhui, Lin Hsiaochung, Wang Ping, et al. Using convolutional neural networks to network intrusion detection for cyber threats［C］ Proc of the 2018 IEEE Int Conf on Applied System Invention (ICASI). Piscataway, NJ: IEEE, 2018: 11071110［2］Li Xueying, Tang Rui, Song Wei. Intrusion detection system using improved convolution neural network［C］ Proc of the 11th Int Conf on Information and Communication Technology (ICTech)). Piscataway, NJ: IEEE, 2022: 97100［3］肖斌, 甘昀, 汪敏, 等. 基于端口注意力与通道空间注意力的网络异常流量检测［J］. 计算机应用, 2024, 44(4): 10271034［4］ElGhamry A, Darwish A, Hassanien A E. An optimized CNNbased intrusion detection system for reducing risks in smart farming［J］. Internet of Things, 2023, 22: 100709［5］Su Tongtong, Sun Huazhi, Zhu Jinqi, et al. BAT: Deep learning methods on network intrusion detection using NSLKDD dataset［J］. IEEE Access, 2020, 8: 2957529585［6］Udas P B, Karim M E, Roy K S. SPIDER: A shallow PCA based network intrusion detection system with enhanced recurrent neural networks［J］. Journal of King Saud UniversityComputer and Information Sciences, 2022, 34(10): 1024610272［7］尹梓诺, 马海龙, 胡涛. 基于联合注意力机制和一维卷积神经网络双向长短期记忆网络模型的流量异常检测方法［J］. 电子与信息学报, 2023, 45(10): 37193728［8］Said R B, Askerzade I. Attentionbased CNNBiLSTM deep learning approach for network intrusion detection system in software defined networks［C］ Proc of the 5th Int Conf on Problems of Cybernetics and Informatics (PCI). Piscataway, NJ: IEEE, 2023: 15［9］杨晓文, 张健, 况立群, 等. 融合CNNBiGRU和注意力机制的网络入侵检测模型［J］. 信息安全研究, 2024, 10(3): 202208［10］Ullah F, Ullah S, Srivastava G, et al. IDSINT: Intrusion detection system using transformerbased transfer learning for imbalanced network traffic［J］. Digital Communications and Networks, 2024, 10(1): 190204［11］Szegedy C,Vanhoucke V, Ioffe S, et al. Rethinking the inception architecture for computer vision［C］ Proc of the Conf on Computer Vision and Pattern Recognition. Piscataway, NJ: IEEE, 2016: 28182826［12］Howard A G, Zhu M, Chen B, et al.Mobilenets: Efficient convolutional neural networks for mobile vision applications［J］. arXiv preprint, arXiv:1704.04861, 2017［13］Schuster M, Paliwal K K. Bidirectional recurrent neural networks［J］. IEEE Trans on Signal Processing, 1997, 45(11): 26732681［14］Sharafaldin I, Lashkari A H, Ghorbani A A. Toward generating a new intrusion detection dataset and intrusion traffic characterization［C］ Proc of Int Conf on Information Systems Security and Privacy. Setúbal: Scite Press, 2018: 108116［15］Sharafaldin I, Lashkari A H, Hakak S, et al. Developing realistic distributed denial of service (DDoS) attack dataset and taxonomy［C］ Proc of the Int Carnahan Conf on Security Technology (ICCST). Piscataway, NJ: IEEE, 2019: 18［16］Zhao Junjie, Liu Yongmin, Zhang Qianlei, et al. CNNAttBiLSTM mechanism: A DDoS attack detection method based on attention mechanism and CNNBiLSTM［J］. IEEE Access, 2023, 11: 136308136317［17］Kumar G S C, Kumar R K, Kumar K P V, et al. Deep residual convolutional neuralnetwork: An efficient technique for intrusion detection system［J］. Expert Systems with Applications, 2024, 238: 121912

[1]	. Privacypreserving Federated Learning Research Based on #br# Confused Modulo Projection Homomorphic Encryption#br# [J]. Journal of Information Security Reserach, 2025, 11(3): 198-.
[2]	. Design of Adversarial Attack Scheme Based on YOLOv8 Object Detector [J]. Journal of Information Security Reserach, 2025, 11(3): 221-.
[3]	. Fake Face Detection Method Based on ConvNeXt [J]. Journal of Information Security Reserach, 2025, 11(3): 231-.
[4]	. An Image Steganography Method Based on Threechannel Deep Fusion Technology [J]. Journal of Information Security Reserach, 2025, 11(3): 257-.
[5]	. A Malicious TLS Traffic Detection Method with Multimodal Features [J]. Journal of Information Security Reserach, 2025, 11(2): 130-.
[6]	. Research on Multimodal Cyberbullying Detection Model for #br# Social Networking Platforms#br# [J]. Journal of Information Security Reserach, 2025, 11(2): 154-.
[7]	. Research of Invisible Backdoor Attack Based on Interpretability [J]. Journal of Information Security Reserach, 2025, 11(1): 21-.
[8]	. Container Anomaly Detection Based on Attention Mechanism and Multiscale Convolutional Neural Network [J]. Journal of Information Security Reserach, 2025, 11(1): 35-.
[9]	. Encrypted Traffic Detection Technology for Multisession Coordinated #br# Attack Based on Deep Learning#br# [J]. Journal of Information Security Reserach, 2025, 11(1): 66-.
[10]	. Image Processing Model Watermarking Method Based on #br# Attention Mechanism and Passport Layer Embedding#br# [J]. Journal of Information Security Reserach, 2024, 10(9): 849-.
[11]	. A Review of GPU Acceleration Technology for Deep Learning in Plaintext and Private Computing Environments [J]. Journal of Information Security Reserach, 2024, 10(7): 586-.
[12]	. Model of Intrusion Detection Based on Federated Learning and Convolutional Neural Network [J]. Journal of Information Security Reserach, 2024, 10(7): 642-.
[13]	. An Automatic Vulnerability Classification Framework Based on BiGRU TextCNN [J]. Journal of Information Security Reserach, 2024, 10(5): 446-.
[14]	. Adversarial Attack Algorithm Based on Multimodel Scheduling Optimization#br# #br# [J]. Journal of Information Security Reserach, 2024, 10(5): 403-.
[15]	. Research on Network Traffic Intrusion Detection Method Based on Denoising Diffusion Probability Model [J]. Journal of Information Security Reserach, 2024, 10(5): 421-.

Research on Deep Learningbased Spatiotemporal Feature Fusion Network Intrusion Detection Model

基于深度学习的时空特征融合网络入侵检测模型研究

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics