CAPSTONE PROJECT 2Implement IDS system integrating machine learning for Hai Dang Travel company C2NE.02 1... We came up with a solution to deploy an IDS system with machine learning to d
Trang 1CAPSTONE PROJECT 2
Implement IDS system integrating machine
learning for Hai Dang Travel company
C2NE.02
1
Trang 2OUR TEAM
Mentor Assoc Prof.
Nhu, Nguyen Gia
Duong
Ngoc The
2
Trang 3N OBJECTIVES
Trang 43
Trang 5Introduction
4
Trang 65
Trang 7HAI DANG TRAVEL
COMPANY
6
Trang 8s
HAI DANG TRAVEL
Trang 9our success
abroad
Trang 10PROBLEM
Upgrade your network, warn
and prevent attacks
8
Trang 12We came up with a solution to deploy an IDS
system with machine learning to detect and
prevent attacks
10
Trang 14PROJECT OBJECTIVES
Research new approaches for intrusion detection does not depend
on signatures.
Build an Intrusion Detection System.
Prevent intrusion
12
Trang 15PRODUCT OVERVIEW
An intrusion detection LEARNING
Machine learning is the
system (IDS) is a device study of computer
or software application algorithms that improve
that monitors a network automatically through
or systems for malicious experience It is seen as
activity or policy a subset of artificial
violations intelligence
DATASET
A data set consists ofroughly twocomponents The two
Trang 16components are rows
Trang 17OPERATION DIAGRAM
14
Trang 18Company local network diagram
Hai Dang Travel
Network diagram 15
Trang 19An overview of Logical Network
Diagram
Network diagram with the appearance of IDS
16
Trang 20Intrusion Detection System Operation
How IDS
work ?
Intrusion Detection System Operation17
Trang 21Intrusion Detection System Operation
How Machine Learning Model
Works
?
Machine Learning Model Operation 18
Trang 22DATA PROCESSING
19
Trang 23DATA PROCESSING
CSE-CIC-IDS2018 dataset
provided by the Canadian
Institute for Cybersecurity Datasets
Realistic background trafficand different attack scenarios
Trang 24DATA PROCESSING
Datasets Overview
21
Trang 25Number of flow per attack type
22
Trang 26DATA PROCESSING
Datasets Problems
23
Trang 27Data cleaning and features engineering
Remove Replace infinity
duplicate header value to mean
Drop all null and
negative value
Remove strong correlation features
24
Trang 28Remove strong correlation features
Before After
25
Trang 29Machine Learning
Gradient Boosting
26
Trang 30Machine Learning
Gradient Boosting
27
Trang 311396.0847661.98322469
flow_duration
8821.24900864048571.59
label
MaliciousBenign
Build Decision Tree from data
28
Trang 32GRADIENT
BOOSTING
29
Trang 33GRADIENT
BOOSTING
30
Trang 34PRODUCT DEMO
31
Trang 35CONCLUSION In this project, we tried our best and
finished it However, there are stillsome issues that need to be improved
in the latest updates In addition, ourproject has received a lot of positivecontributions from internationalfriends through GitHub
32