Intrusion detection using graph inspired insights

Document Type

Article

Publication Title

International Journal of Computers and Applications

Abstract

The rapid evolution of cyber threats in online networks have rendered traditional Intrusion detection Systems (IDS) ineffective in dealing with radidly evolving threat vectors. The proposed research introduces a flow based behavioural analysis framework that augments the traditional machine learning models with network communication patterns to improve their detection capabilities. Experimented on CIC-IDS2017 dataset, the proposed approach firstly introduces Structured Query Language (SQL) based operations to extract network communication behavioral features. These metrics are further combined with traditional flow based features and tested using a Random Forest classifier that was optimized through methodical hyperparameter tuning. The obtained results show an improved accuracy of 99.67%, demonstrating the importance of behavioral indicators, such as flow volume dynamics and activity centrality, in enhancing the detection of coordinated and dynamic attacks.The findings show that integrating flow-based behavioral analysis with traditional traffic features creates a more context-aware and accurate IDS suitable for modern cybersecurity applications. The study also explores the relevance of these features through feature importance analysis and ablation experiments.

First Page

1076

Last Page

1105

DOI

10.1080/1206212X.2025.2584106

Publication Date

1-1-2025

This document is currently not available here.

Share

COinS