计算机科学
入侵检测系统
自动化
工业互联网
人工智能
物联网
马尔可夫决策过程
集合(抽象数据类型)
数据挖掘
马尔可夫过程
机器学习
强化学习
计算机安全
统计
数学
程序设计语言
机械工程
工程类
作者
Shoujian Yu,Rong Zhai,Yizhou Shen,Guowen Wu,Hong Zhang,Shui Yu,Shigen Shen
标识
DOI:10.1109/jiot.2023.3333903
摘要
Industrial Internet of Things (IIoT) has brought a lot of convenience for the industrial world to digitization, automation and intelligence, but it inevitably introduces inherent cyber security risks, resulting in an issue that traditional intrusion detection techniques are no longer sufficient for IIoT environments. To solve this issue, we propose an open-set solution called DC-IDS for IIoT based on deep reinforcement learning. In this solution, the open-set recognition problem in intrusion detection is modeled as a discrete-time Markov decision process, and Deep Q-Network (DQN) is employed to solve it. Meanwhile, a Conditional Variational Auto-Encoder is introduced to the value network in DQN. Therefore, the open-set recognition problem in intrusion detection is divided into two subproblems, namely known traffic fine-grained classification problem and unknown attacks recognition problem. We use DQN to solve the known traffic fine-grained classification problem. Since the reconstruction error of known traffic is generally smaller than the reconstruction error of unknown attacks, we use reconstruction error to recognize unknown attacks. Experiments on IIoT dataset TON-IoT demonstrate the effectiveness of DC-IDS model, which achieves better performance in terms of the recognition rate of unknown attacks as well as the stability of the model compared to previous proposed methods.
科研通智能强力驱动
Strongly Powered by AbleSci AI