109

urn:lsid:arphahub.com:pub:3dc5f44e-8666-58db-bc76-a455210e8891

JUCS - Journal of Universal Computer Science

jucs

0948-695X 0948-6968

Journal of Universal Computer Science

10.3217/jucs-025-01-0002

22573

Research Article

L.4.0 - Security and Trust

Balanced Efficient Lifelong Learning (B-ELLA) for Cyber Attack Detection

Kozik

Rafał

rkozik@utp.edu.pl 1 Choraś

Michał

2 Keller

Jörg

https://orcid.org/0000-0003-0303-6140

TP University of Science and Technology, Bydgoszcz, Poland

TP University of Science and Technology

Bydgoszcz

Poland 2

University of Science and Technology, Bydgoszcz, Poland

University of Science and Technology

Bydgoszcz

Poland

Corresponding author: Rafał Kozik (rkozik@utp.edu.pl).

Academic editor:

2019

28 01 2019

25 1 2 15 04EB49F6-6E52-5D13-A8CB-AC04BA386A16 4840772 25 01 2018 28 10 2018

Rafał Kozik, Michał Choraś, Jörg Keller

This article is freely available under the J.UCS Open Content License.

Abstract

This paper outlines and proposes a new approach to cyber attack detection on the basis of the practical application of the efficient lifelong learning cybersecurity system. One of the main difficulties in machine learning is to build intelligent systems that are capable of learning sequential tasks and then to transfer knowledge from a previously learnt foundation to learn new tasks. Such capability is termed as Lifelong Machine Learning (LML) or as Lifelong Learning Intelligent Systems (LLIS). This kind of solution would promptly address the current problems in the cybersecurity domain, where each new cyber attack can be considered as a new task. Our approach is an extension of the Efficient Lifelong Learning (ELLA) framework. Hereby, we propose the new B-ELLA (Balanced ELLA) framework to detect cyber attacks and to counter the problem of network data imbalance. Our proposition is evaluated on a malware benchmark dataset and we achieve promising results.