Autoencoder_Models_for_Anomaly_Detection_in_Packet_based_NIDS.pdf (810.53 kB)
Download file

Empirical Evaluation of Autoencoder Models for Anomaly Detection in Packet-based NIDS

Download (810.53 kB)
posted on 2023-08-31, 04:24 authored by Soumyadeep Hore, Quoc Nguyen, Yulun Xu, Ankit ShahAnkit Shah, Nathaniel Bastian, Trung Le

Packet-based network intrusion detection systems (NIDS) allow for real-time detection, making this research area crucial. This study compares autoencoder models for anomaly detection in packet-based NIDS. It presents a framework for implementing an autoencoder-based NIDS using packet data. A novel metric for reconstruction error in autoencoders is introduced. This metric is evaluated at different thresholds to compare how accurately it detects network traffic anomalies. The efficacy of autoencoder models is showcased across various network attacks and adversarial samples from public network intrusion data sets. This analysis emphasizes the strengths and limitations of different autoencoders for detecting anomalies in network traffic. The insights from this study provide valuable guidance to researchers and practitioners developing autoencoder-based network intrusion detection mechanisms.


U.S. Military Academy W911NF-22-2-0045


Email Address of Submitting Author

ORCID of Submitting Author


Submitting Author's Institution

University of South Florida

Submitting Author's Country

  • United States of America