. 2024 Oct 24;19(10):e0308639.

doi: 10.1371/journal.pone.0308639. eCollection 2024.

NIDS-FGPA: A federated learning network intrusion detection algorithm based on secure aggregation of gradient similarity models

JiaMing Wang¹, Kai Yang¹, MinJing Li²

Affiliations

¹ Xi'an Key Laboratory of Human-Machine Integration and Control Technology for Intelligent Rehabilitation, School of Computer Science, Xijing University, Xi'an, P.R. China.
² School of Computer, Xijing University, Xi'an, China.

PMID: 39446819
PMCID: PMC11500881
DOI: 10.1371/journal.pone.0308639

NIDS-FGPA: A federated learning network intrusion detection algorithm based on secure aggregation of gradient similarity models

JiaMing Wang et al. PLoS One. 2024.

. 2024 Oct 24;19(10):e0308639.

doi: 10.1371/journal.pone.0308639. eCollection 2024.

Authors

JiaMing Wang¹, Kai Yang¹, MinJing Li²

Affiliations

¹ Xi'an Key Laboratory of Human-Machine Integration and Control Technology for Intelligent Rehabilitation, School of Computer Science, Xijing University, Xi'an, P.R. China.
² School of Computer, Xijing University, Xi'an, China.

PMID: 39446819
PMCID: PMC11500881
DOI: 10.1371/journal.pone.0308639

Abstract

With the rapid development of Industrial Internet of Things (IIoT), network security issues have become increasingly severe, making intrusion detection one of the key technologies for ensuring IIoT security. However, existing intrusion detection systems face challenges such as incomplete data features, missing labels, parameter leakage, and high communication overhead. To address these challenges, this paper proposes a federated learning-based intrusion detection algorithm (NIDS-FGPA) that utilizes gradient similarity model aggregation. This algorithm leverages a federated learning architecture and combines it with Paillier homomorphic encryption technology to ensure the security of the training process. Additionally, the paper introduces the Gradient Similarity Model Aggregation (GSA) algorithm, which dynamically selects and weights updates from different models to reduce communication overhead. Finally, the paper designs a deep learning model based on two-dimensional convolutional neural networks and bidirectional gated recurrent units (2DCNN-BIGRU) to handle incomplete data features and missing labels in network traffic data. Experimental validation on the Edge-IIoTset and CIC IoT 2023 datasets achieves accuracies of 94.5% and 99.2%, respectively. The results demonstrate that the NIDS-FGPA model possesses the ability to identify and capture complex network attacks, significantly enhancing the overall security of the network.

Copyright: © 2024 Wang et al. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.

PubMed Disclaimer

Conflict of interest statement

The authors have declared that no competing interests exist.

Figures

**Fig 1. Federated learning framework diagram.**

**Fig 2. Federated learning classification.**

**Fig 6. Network resource consumption comparison for three methods in learning process under C = 3 scenario.**

**Fig 7. Paillier homomorphic encryption and decryption.**

**Fig 8. Communication overhead under different key lengths.**

**Fig 9. Accuracy and loss variation of the NIDS-FGPA model.**

**Fig 10. Classification report for the nids-fgpa model.**

See this image and copyright information in PMC

References

1. Bukhari SMS, Zafar MH, Houran MA, Moosavi SKR, Mansoor M, Muaaz M, et al.. Secure and privacy-preserving intrusion detection in wireless sensor networks: Federated learning with SCNN-Bi-LSTM for enhanced reliability. Ad Hoc Networks. 2024;155. doi: 10.1016/j.adhoc.2024.103407 - DOI
1. Rashid MM, Khan SU, Eusufzai F, Redwan MA, Sabuj SR, Elsharief M. A Federated Learning-Based Approach for Improving Intrusion Detection in Industrial Internet of Things Networks. Network. 2023;3(1):158–179. doi: 10.3390/network3010008 - DOI
1. Sarhan M, Layeghy S, Moustafa N, Portmann M. Cyber Threat Intelligence Sharing Scheme Based on Federated Learning for Network Intrusion Detection. Journal of Network and Systems Management. 2022;31(1). doi: 10.1007/s10922-022-09691-3 - DOI
1. Lai YC, Lin JY, Lin YD, Hwang RH, Lin PC, Wu HK, et al.. Two-phase Defense Against Poisoning Attacks on Federated Learning-based Intrusion Detection. Computers & Security. 2023;129. doi: 10.1016/j.cose.2023.103205 - DOI
1. Doriguzzi-Corin R, Siracusa D. FLAD: Adaptive Federated Learning for DDoS attack detection. Computers & Security. 2024;137. doi: 10.1016/j.cose.2023.103597 - DOI

MeSH terms

Actions
Actions
Actions
Actions
Actions
Actions

LinkOut - more resources

Full Text Sources
- PubMed Central
- Public Library of Science
Miscellaneous
- NCI CPTAC Assay Portal

Save citation to file

Email citation

Add to Collections

Add to My Bibliography

Your saved search

Create a file for external citation management software

Your RSS Feed

NIDS-FGPA: A federated learning network intrusion detection algorithm based on secure aggregation of gradient similarity models

Affiliations

NIDS-FGPA: A federated learning network intrusion detection algorithm based on secure aggregation of gradient similarity models

Authors

Affiliations

Abstract

Conflict of interest statement

Figures

Similar articles

References

MeSH terms

LinkOut - more resources

Full Text Sources

Miscellaneous