Explainable AI for Comparative Analysis of Intrusion Detection Models
| dc.contributor.author | Corea, Pap M. | |
| dc.contributor.author | Liu, Yongxin | |
| dc.contributor.author | Wang, Jian | |
| dc.contributor.author | Niu, Shuteng | |
| dc.contributor.author | Song, Houbing | |
| dc.date.accessioned | 2024-07-26T16:35:47Z | |
| dc.date.available | 2024-07-26T16:35:47Z | |
| dc.date.issued | 2024-06-14 | |
| dc.description.abstract | Explainable Artificial Intelligence (XAI) has become a widely discussed topic, the related technologies facilitate better understanding of conventional black-box models like Random Forest, Neural Networks and etc. However, domain-specific applications of XAI are still insufficient. To fill this gap, this research analyzes various machine learning models to the tasks of binary and multi-class classification for intrusion detection from network traffic on the same dataset using occlusion sensitivity. The models evaluated include Linear Regression, Logistic Regression, Linear Support Vector Machine (SVM), K-Nearest Neighbors (KNN), Random Forest, Decision Trees, and Multi-Layer Perceptrons (MLP). We trained all models to the accuracy of 90% on the UNSW-NB15 Dataset. We found that most classifiers leverage only less than three critical features to achieve such accuracies, indicating that effective feature engineering could actually be far more important for intrusion detection than applying complicated models. We also discover that Random Forest provides the best performance in terms of accuracy, time efficiency and robustness. Data and code available at https://github.com/pcwhy/XML-IntrusionDetection.git | |
| dc.description.sponsorship | This research was supported by the Center for Advanced Transportation Mobility (CATM), USDOT Grant No. 69A3551747125, 270128BB(AWD00237), the U.S. National Science Foundation under Grant No.2231629, 2142514 and Grant No.2309760 and the USDOT Tier-1 University Transportation Center (UTC) Transportation Cybersecurity Center for Advanced Research and Education (CYBER-CARE) (Grant No. 69A3552348332). | |
| dc.description.uri | https://arxiv.org/html/2406.09684v1 | |
| dc.format.extent | 6 pages | |
| dc.genre | journal articles | |
| dc.genre | preprints | |
| dc.identifier | doi:10.13016/m2fueb-ehcu | |
| dc.identifier.citation | “Explainable AI for Comparative Analysis of Intrusion Detection Models.” Accessed June 20, 2024. https://arxiv.org/html/2406.09684v1. | |
| dc.identifier.uri | http://hdl.handle.net/11603/35137 | |
| dc.language.iso | en_US | |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Information Systems Department | |
| dc.subject | UMBC Security and Optimization for Networked Globe Laboratory (SONG Lab) | |
| dc.title | Explainable AI for Comparative Analysis of Intrusion Detection Models | |
| dc.type | Text | |
| dcterms.creator | https://orcid.org/0000-0003-2631-9223 |
Files
Original bundle
1 - 1 of 1