Online Self-Supervised Deep Learning for Intrusion Detection Systems

Abstract

This paper proposes a novel Self-Supervised Intrusion Detection (SSID) framework which enables a fully online Deep Learning (DL) based Intrusion Detection System (IDS) that requires no human intervention or prior off-line learning. The proposed framework analyzes and labels incoming traffic packets based only on the decisions of the IDS itself using an Auto-Associative Deep Random Neural Network and on an online estimate of its statistically measured trustworthiness. The SSID framework enables IDS to adapt rapidly to time-varying characteristics of the network traffic and eliminates the need for offline data collection. This approach avoids human errors in data labeling and human labor and computational costs of model training and data collection. The approach is experimentally evaluated on public datasets and compared with well-known machine learning and deep learning models showing that this SSID framework is very useful and advantageous as an accurate and online learning DL-based IDS for IoT systems.