Abstract
Deep learning (DL) is an efficient method for botnet attack detection. However, the volume of network traffic data and memory space required is usually large. It is, therefore, almost impossible to implement the DL method in memory-constrained Internet-of-Things (IoT) devices. In this article, we reduce the feature dimensionality of large-scale IoT network traffic data using the encoding phase of long short-Term memory autoencoder (LAE). In order to classify network traffic samples correctly, we analyze the long-Term inter-related changes in the low-dimensional feature set produced by LAE using deep bidirectional long short-Term memory (BLSTM). Extensive experiments are performed with the BoT-IoT data set to validate the effectiveness of the proposed hybrid DL method. Results show that LAE significantly reduced the memory space required for large-scale network traffic data storage by 91.89%, and it outperformed state-of-The-Art feature dimensionality reduction methods by 18.92-27.03%. Despite the significant reduction in feature size, the deep BLSTM model demonstrates robustness against model underfitting and overfitting. It also achieves good generalisation ability in binary and multiclass classification scenarios.
| Original language | English |
|---|---|
| Article number | 9241019 |
| Pages (from-to) | 4944-4956 |
| Number of pages | 13 |
| Journal | IEEE Internet of Things Journal |
| Volume | 8 |
| Issue number | 6 |
| DOIs | |
| State | Published - 15 Mar 2021 |
| Externally published | Yes |
Bibliographical note
Publisher Copyright:© 2014 IEEE.
Keywords
- Autoencoder
- Internet of Things (IoT)
- botnet detection
- dimensionality reduction
- long short-Term memory (LSTM)
ASJC Scopus subject areas
- Signal Processing
- Information Systems
- Hardware and Architecture
- Computer Science Applications
- Computer Networks and Communications