Network Intrusion Detection and Prevention System using Reinforcement Learning algorithm

Network Intrusion Detection System using Machine Learning (Reinforcement algorithm)

To detect these intrusions our proposed approach would be using Deep Reinforcement Learning and Q Learning which improves the stability and performance of the system.

I want to detect Network attacks like DDoS, R2L&U2R, Probing and Spoofing:

DDoS: Distributed Denial of Service attack is a type of DOS attack where multiple compromised systems, which are often infected with a Trojan, are used to target a single system causing a Denial of Service (DoS) attack. These attacks are one of the most dangerous security threats, in which attackers aim to break down the victim’s computer network or cyber system and interrupt their services. MEC systems are especially vulnerable to distributed DoS attacks, in which some distributed edge devices that are not well protected by security protocols can be easily compromised and then used to attack other edge nodes. Some attackers also aim to prevent the collaborative caching users from accessing the caching data. Jamming can be viewed as a special type of DoS attack.

The simplest approach could be to examine the logs of the web server and to identify whether the query relates to the DoS/DDoS attack or not. Collect the good and bad queries, label them (either bot or not). The tricky part will be to extract features. As features, you can use HTTP request method HTTP status code URL File name ([login to view URL]) User-agent IP address Geolocation of the IP address Train and test machine learning model. The drawback of the proposed approach is that the requests are treated as single objects and not as a part of the attack.

R2L: unauthorized access from a remote to the local machine.

U2R: unauthorized access to local superuser.

A remote to user attack is an attack in which a user sends packets to a machine over the internet, which s/he does not have access to in order to expose the machines vulnerabilities and exploit privileges which a local user would have on the computer e.g. xlock, guest,xnsnoop, phf, sendmail dictionary etc.

Probing: A probe attack scans the network to gather the information of computers to identify the vulnerabilities. It is an attack in which the hacker scans a machine or a networking device in order to determine weaknesses or vulnerabilities that may later be exploited so as to compromise the system. This technique is commonly used in data mining. Types of probe attacks are saint, portsweep, mscan, nmap etc.

We are using CICIDS 2017 dataset for intrusion detection which has the latest attributes with new types of attacks. In this section, we have analyzed various types of the publicly available dataset which we have used for training our neural network.

CICIDS 2017: Generating the realistic background traffic is one of the highest priorities of this work. For this dataset, we used our proposed B-Profile system (Sharafaldin et al., 2017), which is responsible for profiling the abstract behavior of human interactions and generate a naturalistic benign background traffic. Our B-Profile for this dataset extracts the abstract behavior of 25 users based on the HTTP, HTTPS, FTP, SSH, and email protocols.

It also includes the results of the network traffic analysis using CICFlowMeter with labeled flows based on the time stamp, source, and destination IPs, source and destination ports, protocols and attack (CSV files).

Skills: Computer Security, Machine Learning, Matlab and Mathematica, Python, Web Security

See more: e learning system using php, wireless intrusion prevention system, reinforcement learning algorithm java, computer security, python, web security, machine learning, intrusion detection model manet using neural network, network intrusion detection system using data mining project, network intrusion detection system source code java, network intrusion detection source code java, java intrusion detection system using java, design network intrusion detection system java, network intrusion detection system java source code, network intrusion detection system, network intrusion detection system using java, network intrusion detection java, intrusion detection system using java, network intrusion detection using java, network intrusion detection prevention using java

About the Employer:
( 2 reviews ) Karlskrona, Sweden

Project ID: #17158467

Awarded to:

kr2500 SEK / hour
(75 Reviews)

9 freelancers are bidding on average kr2592/hour for this job


Hi I am very interested in this project and I think I am eligible for this project. I have rich experiences of machine learning and especially I am very familiar with Reinforcement learning and Q-learning. I am read More

kr2777 SEK / hour
(87 Reviews)

Hi, there - My name is Phong. I have read your job description and I am very interested in this project. I have 7+ years experience in intrusion detection system using machine learning algorithm. I am highly qualifi More

kr2500 SEK / hour
(34 Reviews)

Dear Client Thank you for reading my proposal. I’ve double-checked your job posting carefully and want to work with you. I am the best freelancer for this project on Freelancer. Why? Firstly, the skills for t More

kr2500 SEK / hour
(17 Reviews)

Dear Client, I did same projects with different dataset around 2 years ago. I can show you the demo of the program. The data was huge, it took 3 hours for my laptop to process them. I also know how to use data for t More

kr2500 SEK / hour
(35 Reviews)

We have 10+ years experience in software development. We have developed 400+ projects and the research paper in the field of Machine Learning, Artificial Intelligence and Image processing (GIS), Network, SEO based Web More

kr2500 SEK / hour
(7 Reviews)

hi i am good at detection/recognition using machine learning algorithms i have many experiences let us discuss i can do this perfectly thank you in advance

kr2777 SEK / hour
(2 Reviews)
kr2777 SEK / hour
(4 Reviews)

I can do this project using python. Anuj

kr2500 SEK / hour
(1 Review)