ASENIDSB: A Stacked Ensemble-based Network Intrusion Detection System Optimized with Boruta Feature Selection

Abstract

In the cyber world, network security is increasingly challenged by sophisticated attacks and vulnerabilities that exploit data and systems. Effective security solutions are crucial for real-time protection, yet existing methods often struggle with imbalanced datasets, redundant features, and limited classification accuracy. Network Intrusion Detection Systems (NIDS) play a vital role in combating these threats, but traditional ML approaches frequently fall short in detecting complex and subtle attack patterns. This research addresses these critical issues by introducing a Stacked Ensemble-Based Network Intrusion Detection System using Boruta (ASENIDSB). This model tackles the problem of class imbalance, a significant challenge in IDS, by employing the K-means SMOTE oversampling technique to improve the representation of minority classes. Additionally, the Boruta feature selection method improves computational efficiency by addressing redundancy and inefficiency brought on by irrelevant features. ASENIDSB also improves classification robustness and detection capabilities using a stacked ensemble learning technique. It integrates Extra Trees and Extreme Gradient Boosting as base classifiers, with Logistic Regression serving as the meta-model to deliver precise and reliable predictions. This combination enables the model to address the limitations of single and traditional ensemble classifiers, offering a robust, efficient, and accurate solution for network intrusion detection. The accuracy and F1-score of the proposed ASENIDSB model are evaluated using a ten-fold cross-validation method. Experimental Results have proved that the proposed model significantly surpasses some other ensemble models, standard ML classifiers, and SOTA models. The proposed ASENIDSB model achieved an impressive accuracy of 97.85% and an F1-score of 97.82%.

Keywords

Network Intrusion Detection System stacked ensemble boruta K-means SMOTE isolation Forest robust Scaler

Get full access to this article

View all access options for this article.

References

Abbas

Khan

M. A.

Latif

Ajaz

Shah

A. A.

Ahmad

(2022). A new ensemble-based intrusion detection system for internet of things. Arabian Journal for Science and Engineering, 47, 1805–1819.

Al-Zubaidie

Shyaa

G. S.

(2023). Applying detection leakage on hybrid cryptography to secure transaction information in e-commerce apps. Future Internet, 15(8), 262.

Bakro

Kumar

R. R.

Husain

Ashraf

Ali

Yaqoob

S. I.

Ahmed

M. N.

Parveen

(2024). Building a cloud-IDS by hybrid bio-inspired feature selection algorithms along with random forest model. IEEE Access, 12, 8846–74.

Bhati

B. S.

Rai

C. S.

(2020). Ensemble based approach for intrusion detection using extra tree classifier. In Intelligent Computing in Engineering: Select Proceedings of RICE 2019 (pp. 213–220). Springer Singapore.

Bukhari

Agarwal

Koundal

Zafar

(2023). Anomaly detection using ensemble techniques for boosting the security of intrusion detection system. Procedia Computer Science, 218, 1003–13.

Caporale

G. M.

Kang

W. Y.

Spagnolo

( 2023 Aug 27). Cyber-Attacks, cryptocurrencies and cyber security. In Economic and Financial Crime, Sustainability and Good Governance (pp. 347–381). Springer International Publishing.

Chowdhury

Sen

Goswami

Purkait

Saha

(2023). An implementation of bi-phase network intrusion detection system by using real-time traffic analysis. Expert Systems with Applications, 224, 119831.

Das

Hamdan

O. A.

Shukla

R. M.

Sengupta

Arslan

(2023, January 8). UNR-IDD: Intrusion detection dataset using network port statistics. In 2023 IEEE 20th consumer Communications & networking conference (CCNC) (pp. 497–500). IEEE. https://www.tapadhirdas.com/unr-idd-dataset

Das

Saha

Priyoti

A. T.

Roy

E. K.

Sheldon

F. T.

Haque

Shiva

(2021). Network intrusion detection and comparative analysis using ensemble machine learning and feature selection. IEEE Transactions on Network and Service Management, 19(4), 4821–4833.

10.

ELhadad

Tan

Y. F.

Tan

W. N.

(2023, March 6). Comparison of enhanced isolation forest and enhanced local outlier factor in anomalous power consumption labelling. In 2023 IEEE 3rd International Conference in Power Engineering Applications (ICPEA) (pp. 243–247). IEEE.

11.

Esteban

A. P.

(2023). Anomaly recognition in wireless ad-hoc network by using ant colony optimization and deep learning. International Journal on Recent and Innovation Trends in Computing and Communication, 11(5), 395–403.

12.

Wang

(2019). A novel approach to intrusion detection using SVM ensemble with feature augmentation. Computers & Security, 86, 53–62.

13.

Hossain

M. A.

Islam

M. S.

(2023). Ensuring network security with a robust intrusion detection system using ensemble-based machine learning. Array, 19, 100306.

14.

Kavitha

Gadekallu

T. R.

Kavin

B. P.

Lai

W. C.

(2023). Filter-based ensemble feature selection and deep learning model for intrusion detection in cloud computing. Electronics, 12(3), 556.

15.

Kharwar

A. R.

Thakor

D. V.

(2022). An ensemble approach for feature selection and classification in intrusion detection using extra-tree algorithm. International Journal of Information Security and Privacy (IJISP), 16(1), 1–21.

16.

Kharwar

A. R.

Thakor

D. V.

17.

Kudithipudi

Narisetty

Kancherla

G. R.

Bobba

(2023). Evaluating the efficacy of resampling techniques in addressing class imbalance for network intrusion detection systems using support vector machines. Ingenierie des Systemes d’Information, 28(5), 1229.

18.

Lian

Nie

Jia

Shi

Fan

Liang

(2020). An intrusion detection method based on decision tree–recursive feature elimination in ensemble learning. Mathematical Problems in Engineering, 2020(1), 2835023.

19.

Mishra

A. K.

Paliwal

(2023). Mitigating cyber threats through integration of feature selection and stacking ensemble learning: The LGBM and random forest intrusion detection perspective. Cluster Computing, 26(4), 2339–50.

20.

Moustafa

Turnbull

Choo

K. K.

(2018). An ensemble intrusion detection technique based on proposed statistical flow features for protecting network traffic of internet of things. IEEE Internet of Things Journal, 6(3), 4815–30.

21.

Rajadurai

Gandhi

U. D.

(2022). A stacked ensemble learning model for intrusion detection in wireless network. Neural computing and applications, 34(18), 15387–95.

22.

Rajagopal

Kundapur

P. P.

Hareesha

K. S.

(2020). A stacking ensemble for network intrusion detection using heterogeneous datasets. Security and Communication Networks, 2020(1), 4586875.

23.

Rashid

Kamruzzaman

Imam

Wibowo

Gordon

(2022). A tree-based stacking ensemble technique with feature selection for network intrusion detection. Applied Intelligence, 52(9), 9768–81.

24.

Sandosh

Govindasamy

Akila

(2020). Enhanced intrusion detection system via agent clustering and classification based on outlier detection. Peer-to-Peer networking and Applications, 13(3), 1038–45.

25.

Sarkar

Sharma

H. S.

Singh

M. M.

(2023). A supervised machine learning-based solution for efficient network intrusion detection using ensemble learning based on hyperparameter optimization. International Journal of Information Technology, 15(1), 423–34.

26.

Sayem

I. M.

Sayed

M. I.

Saha

Haque

(2024, June 14). ENIDS: A deep learning-based ensemble framework for network intrusion detection systems. IEEE Transactions on Network and Service Management, 21(5), 5809–5825.

27.

Shafieian

Zulkernine

(2023). Multi-layer stacking ensemble learners for low footprint network intrusion detection. Complex & Intelligent Systems, 9(4), 3787–99.

28.

Sharma

N. V.

Yadav

N. S.

(2021). An optimal intrusion detection system using recursive feature elimination and ensemble of classifiers. Microprocessors and Microsystems, 85, 104293.

29.

Talukder

M. A.

Islam

M. M.

Uddin

M. A.

Hasan

K. F.

Sharmin

Alyami

S. A.

Moni

M. A.

(2024). Machine learning-based network intrusion detection for big and imbalanced data using oversampling, stacking feature embedding and feature extraction. Journal of big data, 11(1), 33.

30.

Turukmane

A. V.

Devendiran

(2024). M-MultiSVM: An efficient feature selection assisted network intrusion detection system using machine learning. Computers & Security, 137, 103587.

31.

Venkatesan

(2023). Design an intrusion detection system based on feature selection using ML algorithms. Mathematical Statistician and Engineering Applications, 72(1), 702–10.

32.

Widodo

A. O.

Setiawan

Indraswari

(2024). Machine learning-based intrusion detection on multi-class imbalanced dataset using SMOTE. Procedia Computer Science, 234, 578–83.

33.

Fan

Zhu

You

Zhou

Huang

(2022). Intrusion detection system combined enhanced random forest with SMOTE algorithm. EURASIP Journal on Advances in Signal Processing, 2022(1), 39.

34.

Zhang

J. L.

Liu

X. M.

Dong

(2021). Multi-dimensional feature fusion and stacking ensemble mechanism for network intrusion detection. Future Generation Computer Systems, 122, 130–43.