Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Anomaly Based Intrusion Detection using Large Language Models

Published

Author(s)

Zineb Maasaoui, Abdella Battou, Mheni Merzouki, Ahmed LBATH

Abstract

In the context of modern networks where cyber-attacks are increasingly complex and frequent, traditional Intrusion Detection Systems (IDS) often struggle to manage the vast volume of data and fail to detect novel attacks. Leveraging Artificial Intelligence, specifically Natural Language Processing with transformer architectures, offers a promising solution. This study applies the Bidirectional Encoder Representations from Transformers (BERT) model, enhanced by a Byte-level Byte-pair tokenizer, to effectively identify network-based attacks within IoT systems. Experiments on three datasets—UNSW-NB15, TON-IoT, and Edge-IIoT—show that our approach substantially outperforms traditional methods in multi-class classification tasks. Notably, we achieved near-perfect classification accuracy on the Edge-IIoT dataset, with significant improvements in F1 scores and reduction in validation losses across all datasets, demonstrating the efficacy of pre-trained Large Language Models (LLMs) in network security.
Proceedings Title
The ACS/IEEE 21st International Conference on Computer Systems and Applications (AICCSA 2024)
Conference Dates
October 22-26, 2024
Conference Location
sousse, TN

Keywords

Network intrusion, Network security, Natural language processing, Large Language Model, BERT, BBPE, AI, IoT

Citation

Maasaoui, Z. , Battou, A. , Merzouki, M. and Lbath, A. (2024), Anomaly Based Intrusion Detection using Large Language Models, The ACS/IEEE 21st International Conference on Computer Systems and Applications (AICCSA 2024), sousse, TN (Accessed December 2, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created June 15, 2024, Updated July 31, 2024