Small and medium-sized enterprises (SMEs) face escalating cyber threats and often lack the technical and financial capacity to deploy resource-intensive security solutions. This study evaluates the effectiveness of Artificial Intelligence (AI) and Machine Learning (ML) models for lightweight intrusion detection systems (IDS) tailored to SME environments. Six supervised algorithms including Logistic Regression, Naïve Bayes, Random Forest, Multi-Layer Perceptron (MLP), LightGBM, and XGBoost, were trained and tested on the TON_IoT dataset. Performance was assessed using standard metrics (accuracy, precision, recall, F1-score, ROC-AUC) alongside computational efficiency indicators (training time, inference latency, and model size). Results show that tree-based ensemble models, particularly XGBoost (accuracy = 99.07%, ROC-AUC = 0.9996) and LightGBM (accuracy = 99.00%, ROC-AUC = 0.9993), achieved superior detection performance while maintaining minimal computational cost. In contrast, Logistic Regression and Naïve Bayes exhibited faster training but lower detection accuracy (<76%). These findings confirm that AI-driven ensemble models can deliver both accuracy and efficiency, making them ideal for deployment in resource-constrained SMEs. Limitations of this study include reliance on a single dataset and supervised frameworks. Future work will extend to cross-dataset validation and real-world SME applications to enhance robustness and generalizability.
Al-HaddadLSialMSAliI, et al.The role of small and medium enterprises (SMEs) in employment generation and economic growth: a study of marble industry in emerging economy. Int J Financ Res2019; 10: 174–187.
2.
GherghinaȘCBotezatuMAHosszuA, et al.Small and medium-sized enterprises (SMEs): the engine of economic growth through investments and innovation. Sustainability2020; 12: 347.
3.
SahaBAnwarZ. A review of cybersecurity challenges in small business: the imperative for a future governance framework. J Inf Secur2024; 15: 24–39.
4.
ArroyabeMFArranzCFADe ArroyabeIF, et al.Revealing the realities of cybercrime in small and medium enterprises: understanding fear and taxonomic perspectives. Comput Secur2024; 141: 103826.
5.
SalimDTSinghMMKeikhosrokianiP. A systematic literature review for APT detection and Effective Cyber Situational Awareness (ECSA) conceptual model. Heliyon2023; 9: e17156.
6.
AhmedUNazirMSarwarA, et al.Signature-based intrusion detection using machine learning and deep learning approaches empowered with fuzzy clustering. Sci Rep2025; 15: 1726.
7.
Santhosh KumarSSelviMKannanA. A comprehensive survey on machine learning-based intrusion detection systems for secure communication in internet of things. Comput Intell Neurosci2023: 2023: 8981988.
8.
SaheedYKAbiodunAIMisraS, et al.A machine learning-based intrusion detection for detecting internet of things network attacks. Alexandria Eng J2022; 61: 9395–9409.
9.
Al-AmbusaidiMYinjunZMuhammadY, et al.ML-IDS: an efficient ML-enabled intrusion detection system for securing IoT networks and applications. Soft COmput2024; 28: 1765–1784.
10.
SharmaBSharmaLLalC, et al.Explainable artificial intelligence for intrusion detection in IoT networks: a deep learning based approach. Expert Syst Appl2024; 238: 121751.
11.
MozumderMSAHasanMRSakilMBH, et al.AI-Driven Financial knowledge graphs: bridging traditional finance and blockchain ecosystems with graph neural networks. In: 2025 International Conference on Electrical, Computer and Communication Engineering (ECCE), 2025, pp.1–6: IEEE.
12.
SakilMBHHasanMAMozumderMSA, et al.Enhancing Medicare Fraud Detection with a CNN-Transformer-XGBoost Framework and Explainable AI. IEEE Access2025; 13: 79609–79622.
13.
PapathanasiouALiontosGKatsourasA, et al.Cybersecurity guide for SMEs: protecting small and medium-sized enterprises in the digital era. J Inf Secur2025; 16: 1–43.
14.
PawarSPalivelaDH. LCCI: a framework for least cybersecurity controls to be implemented for small and medium enterprises (SMEs). Int J Inf Manage Data Insights2022; 2: 100080.
15.
ArmeniaSAngeliniMNoninoF, et al.A dynamic simulation approach to support the evaluation of cyber risks and security investments in SMEs. Decis Support Syst2021; 147: 113580.
16.
WagnerCDulaunoyAWagenerG, et al.Misp: the design and implementation of a collaborative threat intelligence sharing platform. In: Proceedings of the 2016 ACM on workshop on information sharing and collaborative security, 2016, pp.49–56.
17.
RawindaranNJayalAPrakashE. Machine learning cybersecurity adoption in small and medium enterprises in developed countries. Computers2021; 10: 150.
18.
DevanPKhareN. An efficient XGBoost–DNN-based classification model for network intrusion detection system. Neural Comput Appl2020; 32: 12499–12514.
19.
FuhnwiGSRevelleMIzurietaC. Improving network intrusion detection performance: an empirical evaluation using extreme gradient boosting (XGBoost) with recursive feature elimination. In: 2024 IEEE 3rd International Conference on AI in Cybersecurity (ICAIC), 2024, pp.1–8: IEEE.
20.
SOWTHAddaM. Enhancing Ids performance through a comparative analysis of random forest, Xgboost, and deep neural networks. Xgboost, and Deep Neural Networks.
21.
AnandVSelvaganesanC. Enhancing ransomware detection-A comparative review of XGBoost, random forest, and neural network approaches. In: 2025 International Conference on Emerging Systems and Intelligent Computing (ESIC), 2025, pp.710–715: IEEE.
22.
BagadiGRAdimulamYB. Random forest and gradient boosting for superior intrusion detection and anomaly classification. In: 2025 International Conference on Machine Learning and Autonomous Systems (ICMLAS), 2025, pp.1618–1625: IEEE.
23.
AlsabilahNRawatDB. Joint rough set theory and xgboost based learning for network intrusion detection system. IEEE Internet Things J2025: 12; 7930–7937.
24.
WangZChenHYangS, et al.A lightweight intrusion detection method for IoT based on deep learning and dynamic quantization. PeerJ Comput Sci2023; 9: e1569.
25.
UdurumeMShakhovVKooI. Comparative analysis of deep convolutional neural network—bidirectional long short-term memory and machine learning methods in intrusion detection systems. Appl Sci2024; 14: 6967.
26.
BhuttaAANisaMuMianAN. Lightweight real-time WiFi-based intrusion detection system using LightGBM. Wirel Netw2024; 30: 749–761.
27.
ChenWYangHYinL, et al.Large-scale IoT attack detection scheme based on LightGBM and feature selection using an improved salp swarm algorithm. Sci Rep2024; 14: 19165.
28.
YangSZhengXXuZ, et al.A lightweight approach for network intrusion detection based on self-knowledge distillation. In: ICC 2023-IEEE International Conference on Communications, 2023, pp.3000–3005: IEEE.
29.
DataMBakhtiarFA. Resource efficient intrusion detection systems for internet of things using online machine-learning models. In: Proceedings of the 8th International Conference on Sustainable Information Engineering and Technology, 2023, pp.297–303.
30.
AlotaibiYIlyasM. Ensemble-learning framework for intrusion detection to enhance internet of things’ devices security. Sensors2023; 23: 5568.
31.
ArastehBAghaeiBFarzadB, et al.Detecting SQL injection attacks by binary gray wolf optimizer and machine learning algorithms. Neural Comput Appl2024; 36: 6771–6792.
32.
ArastehBBouyerASefatiSS, et al.Effective SQL injection detection: a fusion of binary olympiad optimizer and classification algorithm. Mathematics2024; 12: 2917.
33.
MajidianZTaghipourEivaziSArastehB, et al.An intrusion detection method to detect denial of service attacks using error-correcting output codes and adaptive neuro-fuzzy inference. Comput Electr Eng2023; 106: 108600.
34.
MajidianSZTaghipourEivaziSArastehB, et al.Optimizing random forests to detect intrusion in the Internet of Things. Comput Electr Eng2024; 120: 109860.
35.
D’hoogeLWautersTVolckaertB, et al.Inter-dataset generalization strength of supervised machine learning methods for intrusion detection. J Inf Secur Appl2020; 54: 102564.
36.
RababahBSrivastavaS. Hybrid model for intrusion detection systems. arXiv preprint arXiv:2003.08585 2020.
37.
ZhuoCNaL. Network intrusion detection model based on random forest and XGBoost. 信号处理2020; 36: 1055–1064.
38.
KimanziRKimangaPCheroriD, et al.Deep Learning Algorithms Used in Intrusion Detection Systems–A Review. arXiv preprint arXiv:2402.17020 2024.
39.
IsmailSDandanSQushouAa. Intrusion detection in IoT and IIoT: comparing lightweight machine learning techniques using TON_IoT, WUSTL-IIOT-2021, and EdgeIIoTset datasets. IEEE Access2025: 13; 73468–73485.
40.
AhmedSMIslamSSUllahMS. Hybrid machine learning and deep learning approaches for anomaly detection using KD99 and TON_IoT datasets. In: 2025 International Conference on Electrical, Computer and Communication Engineering (ECCE), 2025, pp.1–6: IEEE.
41.
KhanMHaroonM. Ensemble random forest and deep convolutional neural networks in detecting and classifying the multiple intrusions from near real-time cloud datasets. SecurPrivacy2024; 7: e408.
42.
BamberSSKatkuriAVRSharmaS, et al.A hybrid CNN-LSTM approach for intelligent cyber intrusion detection system. Comput Secur2025; 148: 104146.
43.
ZhangZAl HamadiHDamianiE, et al.Explainable artificial intelligence applications in cyber security: state-of-the-art in research. IEEE Access2022; 10: 93104–93139.
44.
JinBXuXZhangY. Peanut oil price change forecasts through the neural network. ForesightJan. 2025; 27; 595–612.
45.
JinBXuX. China commodity price index (CCPI) forecasting via the neural network. Int J Financ EngSep. 2025; 12: 1–27. DOI: 10.1142/S2424786325500033
46.
JinBXuX. Predictive modeling of composite real-estate price indices through Gaussian process regressions. Adv Data Sci Adapt Anal.2025; 17: 25500068. DOI: 10.1142/S2424922X25500068
47.
JinBXuX. Gaussian process regression based silver price forecasts. J Uncertain Syst2024; 17: 2450013. DOI: 10.1142/S1752890924500132
