Citation
Azeez, Sarmad Dheyaa and Ahmed, Saadaldeen Rashid and Ilyas, Muhammad and Miah, Abu Saleh Musa and Farid, Fahmid Al and Karim, Hezerul Abdul (2026) IntrusionNet: Deep Learning-Based Hybrid Model for Detection of Known and Zero-Day Attacks. Computers, Materials & Continua. pp. 1-10. ISSN 1546-2226|
Text
TSP_CMC_76283.pdf - Published Version Restricted to Repository staff only Download (6MB) |
Abstract
Traditional Intrusion Detection Systems (IDSs) that rely on fixed signatures or basic machine learning often struggle with sophisticated, multi-stage cyberattacks and previously unknown threats. To fix these problems, this paper introduces IntrusionNet, a mixed deep learning system that combines Convolutional Neural Networks (CNN), Recurrent Neural Networks (RNN), and Autoencoders in a two-part design. Differing from typical stacked models, IntrusionNet works on two levels at the same time. First, a supervised CNN-RNN process pulls spatial-temporal data from traffic flows to sort well-known attack patterns. Second, an unsupervised Autoencoder process spots new anomalies by looking at reconstruction error limits. This approach allows the automatic learning of threat traits as they change, without needing someone to do it by hand. The system was tested on the UNSW-NB15 data set, picked because it realistically includes many kinds of attacks, like Fuzzers, Shellcode, and Worms. Tests show that IntrusionNet gets an accuracy of 98.80% and an F1-score of 0.985, doing better than other systems, especially with less common attack types. Also, tests using Precision-Recall (PR) analysis and False Positive Rate (FPR) measurements prove that the model handles class imbalance well, which is key for real-world security. The suggested system can be scaled up easily and performs calculations fast, making it a possible key part of real-time detection in Security Information and Event Management (SIEM) systems.
| Item Type: | Article |
|---|---|
| Uncontrolled Keywords: | Intrusion detection system (IDS), deep learning, CNN-RNN hybrid, anomaly detection, UNSW-NB15, network security, real-time detection, IntrusionNet, temporal modeling, cybersecurity |
| Subjects: | Q Science > QA Mathematics > QA71-90 Instruments and machines |
| Divisions: | Faculty of Artificial Intelligence & Engineering (FAIE) |
| Depositing User: | Ms Suzilawati Abu Samah |
| Date Deposited: | 08 Jun 2026 00:30 |
| Last Modified: | 08 Jun 2026 00:30 |
| URII: | http://shdl.mmu.edu.my/id/eprint/16088 |
Downloads
Downloads per month over past year
Edit (login required) |
