The improvement of IoT security solutions is nowadays more current and urgent because of the large masses of vulnerabilities, cyber attacks, data theft, and other threats related to the use of IoT devices. Most IoT datasets are imbalanced, as benign traffic dominates while malicious traffic is scarce. Additionally, IoT traffic is sensitive and rarely available for public research. Generating realistic synthetic data is essential for overcoming these limitations. Our study focuses on Deep Learning models for network intrusion detection by implementing Tabular Generative Adversarial Networks (TGAN) to address class imbalance. GANs help by increasing the proportion of rare malware samples, improving model training and detection accuracy. In this paper, we rely on the UNSW-NB15 and NSL-KDD datasets to address the issue of imbalanced classes. We propose a new approach that we called FS-TGAN, which is based on feature selection methods and TGAN model for samples generating. The time is a crucial parameter for security tools such as IDS and antivirus, where a lot of data must be analyzed to look for malware, anomalies, or anything suspicious that might be trying to penetrate the system. For this purpose, we reduced the number of features to eliminate redundant features or those that are highly correlated. The results show that TGAN performs well. We achieved 99.03% of accuracy with the UNSW-NB15 dataset, demonstrating a significantly reduced error rate by learning to provide new unseen data that share the training set’s statistics, with a detection time of 0.230 ms per traffic set.
AbidM. N.BeggasM.LaouidA. (2024). Reinforcement learning approach for IoT security using CyberBattleSim: A simulation-based study. In 2024 6th International conference on pattern analysis and intelligent systems (PAIS). IEEE.
2.
AdawadkarA. M. K.KulkarniN. (2022). Cybersecurity and reinforcement learning - A brief survey. Engineering Applications of Artificial Intelligence, 114, 105116.
3.
AfoudiY.LazaarM.Al AchhabM. (2019). Impact of feature selection on content-based recommendation system. In 2019 International conference on wireless technologies, embedded and intelligent systems (WITS) (pp. 1–6).
4.
AhamedB. S.AryaS. (2021). LGBM classifier based technique for predicting type-2 diabetes. Clinical Medicine, 8(8), 14.
5.
AlabrahA. (2022). A novel study: GAN-based minority class balancing and machine-learning-Based network intruder detection using chi-square feature selection. Applied Sciences, 12(22), 11662.
6.
AlaouiE. A. A.TekouabouS. C. K.MalehY.NayyarA. (2022). Towards to intelligent routing for DTN protocols using machine learning techniques. Simulation Modelling Practice and Theory, 117, 102475.
7.
AlmianiM.AbuGhazlehA.Al-RahayfehA.AtiewiS.RazaqueA. (2020). Deep recurrent neural network for IoT intrusion detection system. Simulation Modelling Practice and Theory, 101, 102031.
8.
AlsalmanD. (2024). A comparative study of anomaly detection techniques for IoT security using adaptive machine learning for IoT threats. IEEE Access, 12, 14719–14730.
9.
AndresiniG.AppiceA.De RoseL.MalerbaD. (2021). GAN augmentation to deal with imbalance in imaging-based intrusion detection. Future Generation Computer Systems, 123, 108–127.
10.
ArjovskyM.ChintalaS.BottouL. (2017). Wasserstein GAN (version 3). arXiv.
11.
BakhshS. A.KhanM. A.AhmedF.AlshehriM. S.AliH.AhmadJ. (2023). Enhancing IoT network security through deep learning-powered intrusion detection system. Internet of Things, 24, 100936.
12.
BalajiS.NarayananS. S. (2022). Dynamic distributed generative adversarial network for intrusion detection system over internet of things. Wireless Networks, 29(5), 1949–1967.
13.
BhayoJ.ShahS. A.HameedS.AhmedA.NasirJ.DraheimD. (2023). Towards a machine learning-based framework for DDOS attack detection in software-defined IoT (SD-IoT) networks. Engineering Applications of Artificial Intelligence, 123, 106432.
14.
BiJ.GuanZ.YuanH.ZhangJ. (2024). Improved network intrusion classification with attention-assisted bidirectional LSTM and optimized sparse contractive autoencoders. Expert Systems with Applications, 244, 122966.
15.
ChandrashekarG.SahinF. (2014). A survey on feature selection methods. Computers & Electrical Engineering, 40(1), 16–28.
16.
ChawlaN. V.BowyerK. W.HallL. O.KegelmeyerW. P. (2002). SMOTE: Synthetic minority over-sampling technique. Journal of Artificial Intelligence Research, 16, 321–357.
17.
ChemmakhaM.HabibiO.LazaarM. (2022). Improving machine learning models for malware detection using embedded feature selection method. IFAC-PapersOnLine, 55(12), 771–776.
18.
ChemmakhaM.HabibiO.LazaarM. (2023). A novel hybrid architecture of conditional tabular generative adversarial network and 1d convolution neural network for enhanced attack detection in iot systems. In 2023 Sixth international conference on vocational education and electrical engineering (ICVEE) (pp. 156–161). IEEE.
19.
ChemmakhaM.HabibiO.LazaarM. (2024). Towards a deep learning approach for IoT attack detection based on a new generative adversarial network architecture and gated recurrent unit. Journal of Network and Systems Management, 32(4), 96.
20.
ChenY.-M.YangC.-H.ChenG.-C. (2021). Using Generative Adversarial Networks for Data Augmentation in Android Malware Detection. In 2021 IEEE conference on dependable and secure computing (DSC). IEEE.
21.
EdaliM.YucelG. (2019). Exploring the behavior space of agent-based simulation models using random forest metamodels and sequential sampling. Simulation Modelling Practice and Theory, 92, 62–81.
22.
EffrosynidisD.ArampatzisA. (2021). An evaluation of feature selection methods for environmental data. Ecological Informatics, 16, 101224.
23.
FengX.HanJ.ZhangR.XuS.XiaH. (2024). Security defense strategy algorithm for internet of things based on deep reinforcement learning. High-Confidence Computing, 4(1), 100167.
24.
GanjeiM. A.BoostaniR. (2022). A hybrid feature selection scheme for high-dimensional data. Engineering Applications of Artificial Intelligence, 113, 104894.
GulrajaniI.AhmedF.ArjovskyM.DumoulinV.CourvilleA. (2017). Improved training of wasserstein GANs (version 3). arXiv.
27.
HabibiO.ChemmakhaM.LazaarM. (2022). Effect of features extraction and selection on the evaluation of machine learning models. IFAC-PapersOnLine, 55(12), 462–467.
28.
HardyC.Le MerrerE.SericolaB. (2019). Md-gan: Multi-discriminator generative adversarial networks for distributed datasets. In 2019 IEEE international parallel and distributed processing symposium.
29.
HeH.BaiY.GarciaE. A.LiS. (2008). ADASYN: Adaptive synthetic sampling approach for imbalanced learning. In 2008 IEEE international joint conference on neural networks (IEEE world congress on computational intelligence). 2008 IEEE international joint conference on neural networks (IJCNN 2008 - Hong Kong). IEEE.
30.
HindistanY. S.YetkinE. F. (2023). A hybrid approach with GAN and DP for privacy preservation of IIoT data. IEEE Access, 11, 5837–5849.
31.
HuW.TanY. (2017). Generating adversarial malware examples for black-box attacks based on GAN (version 1). arXiv.
32.
JinQ.LinR.YangF. (2022). BroadGAN: Generative adversarial networks of discriminating separate features based on broad learning. Engineering Applications of Artificial Intelligence, 109, 104640.
33.
JullianO.OteroB.RodriguezE.GutierrezN.AntonaH.CanalR. (2023). Deep-learning based detection for cyber-attacks in IoT networks: A distributed attack detection framework. Journal of Network and Systems Management, 31(2), 33.
KumarA.SinghD. (2023). Detection and prevention of DDoS attacks on edge computing of IoT devices through reinforcement learning. International Journal of Information Technology, 16(3), 1365–1376.
36.
KumarV.SinhaD. (2023). Synthetic attack data generation model applying generative adversarial network for intrusion detection. Computers & Security, 125, 103054.
LiuX.LiT.ZhangR.WuD.LiuY.YangZ. (2021). A GAN and Feature Selection-Based Oversampling Technique for Intrusion Detection. In S. Sciancalepore (Ed.), Security and communication networks (Vol. 2021, pp. 1–15). Hindawi Limited.
39.
LvZ.ChenD.CaoB.SongH.LvH. (2024). Secure deep learning in defense in deep-learning-as-a-Service computing systems in digital twins. IEEE Transactions on Computers, 73(3), 656–668.
40.
LyuM.Habibi GharakheiliH.SivaramanV. (2024). A survey on enterprise network security: Asset behavioral monitoring and distributed attack detection. IEEE Access, 12, 89363–89383.
MoustafaN.SlayJ. (2015). UNSW-NB15: A comprehensive data set for network intrusion detection systems (UNSW-NB15 network data set). In 2015 Military communications and information systems conference (MilCIS) (pp. 1–6).
43.
NazirA.HeJ.ZhuN.AnwarM. S.PathanM. S. (2024a). Enhancing IoT security: A collaborative framework integrating federated learning, dense neural networks, and blockchain. In Cluster computing. Springer Science and Business Media LLC.
44.
NazirA.HeJ.ZhuN.WajahatA.UllahF.QureshiS.MaX.PathanM. S. (2024b). Collaborative threat intelligence: Enhancing IoT security through blockchain and machine learning integration. Journal of King Saud University - Computer and Information Sciences, 36(2), 101939.
45.
PandeyA. K.SinghP.JainD.SharmaA. K.JainA.GuptaA. (2023). Generative adversarial network and Bayesian optimization in multi-class support vector machine for intrusion detection system. International Journal of Intelligent Engineering & Systems, 16(1), 110–119.
46.
RahmanS.PalS.MittalS.ChawlaT.KarmakarC. (2024). SYN-GAN: A robust intrusion detection system using GAN-based synthetic data for IoT security. Internet of Things, 26, 101212.
47.
SadeghianZ.AkbariE.NematzadehH. (2021). A hybrid feature selection method based on information theory and binary butterfly optimization algorithm. Engineering Applications of Artificial Intelligence, 97, 104079.
48.
ShahrakiA.AbbasiM.HaugenO. (2020). Boosting algorithms for network intrusion detection: A comparative evaluation of real adaBoost, gentle adaBoost and modest adaBoost. Engineering Applications of Artificial Intelligence, 94, 103770.
49.
SimonyanK.ZissermanA. (2014). Very deep convolutional networks for large-scale image recognition (version 6). arXiv.
TabassumA.ErbadA.LebdaW.MohamedA.GuizaniM. (2022). FEDGAN-IDS: Privacy-preserving IDS using GAN and federated learning. Computer Communications, 192, 299–310.
52.
TavallaeeM.BagheriE.LuW.GhorbaniA. A. (2009). A detailed analysis of the KDD CUP 99 data set. In 2009 IEEE symposium on computational intelligence for security and defense applications (pp. 1–6). IEEE.
53.
XinB.YangW.GengY.ChenS.WangS.HuangL. (2020). Private fl-gan: Differential privacy synthetic data generation based on federated learning. In ICASSP 2020-2020 IEEE international conference on acoustics, speech and signal processing.
54.
XuL.SkoularidouM.Cuesta-InfanteA.VeeramachaneniK. (2019). Modeling tabular data using conditional GAN (version 2). arXiv.
55.
XuL.VeeramachaneniK. (2018). Synthesizing tabular data using generative adversarial networks (version 1). arXiv.
56.
YangY.ZhengK.WuB.YangY.WangX. (2020). Network intrusion detection based on supervised adversarial variational auto-encoder with regularization. IEEE Access, 8, 42169–42184.
57.
YaoW.ShiH.ZhaoH. (2023). Scalable anomaly-based intrusion detection for secure internet of things using generative adversarial networks in fog environment. Journal of Network and Computer Applications, 214, 103622.
58.
YueS.WangT. (2017). Imbalanced malware images classification: A CNN based approach (version 2). arXiv.
