Abstract
Intrusion detection has drawn considerable interest as researchers endeavor to produce efficient models that offer high detection accuracy. Nevertheless, the challenge remains in developing reliable and efficient Intrusion Detection System (IDS) that is capable of handling large amounts of data, with trends evolving in real-time circumstances. The design of such a system relies on the detection methods used, particularly the feature selection techniques and machine learning algorithms used. Thus motivated, this paper presents a review on feature selection and ensemble techniques used in anomaly-based IDS research. Dimensionality reduction methods are reviewed, followed by the categorization of feature selection techniques to illustrate their effectiveness on training phase and detection. Selection of the most relevant features in data has been proven to increase the efficiency of detection in terms of accuracy and computational efficiency, hence its important role in the design of an anomaly-based IDS. We then analyze and discuss a variety of IDS-based machine learning techniques with various detection models (single classifier-based or ensemble-based), to illustrate their significance and success in the intrusion detection area. Besides supervised and unsupervised learning methods in machine learning, ensemble methods combine several base models to produce one optimal predictive model and improve accuracy performance of IDS. The review consequently focuses on ensemble techniques employed in anomaly-based IDS models and illustrates how their use improves the performance of the anomaly-based IDS models. Finally, the paper laments on open issues in the area and offers research trends to be considered by researchers in designing efficient anomaly-based IDSs.
Highlights
Intrusion detection system (IDS) is one of the widely used security mechanisms intended to protect computers, programs, networks, and information against intrusion, illegitimate access, alteration, or demolition
Upon studying and reviewing the different IDS models, we found challenges that motivate research in utilizing machine learning for feature selection and ensemble techniques in IDS
The article reviews the studies on feature selection and ensemble approaches utilized for anomaly-based intrusion detection systems
Summary
Intrusion detection system (IDS) is one of the widely used security mechanisms intended to protect computers, programs, networks, and information against intrusion, illegitimate access, alteration, or demolition. Security systems for computers (host) and networks requires firewalls, antivirus applications and IDSs. Intrusion detection aims to detect acts performed against information systems by intruders, which attempt to gain illegitimate access to a computer asset (data, information, and network). One of the techniques utilized to construct the intrusion detection system in order to track and deter attacks are machine learning (ML) algorithms. These techniques analyze and distinguish between from normal and abnormal packets, are attempting to avoid system harm from the attack
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
