Academic Journal
View in EDS
HTML Full Text

A Petri Net and LSTM Hybrid Approach for Intrusion Detection Systems in Enterprise Networks.

Bibliographic Details
Title: A Petri Net and LSTM Hybrid Approach for Intrusion Detection Systems in Enterprise Networks.
Authors: Volpe, Gaetano, Fiore, Marco, la Grasta, Annabella, Albano, Francesca, Stefanizzi, Sergio, Mongiello, Marina, Mangini, Agostino Marcello
Source: Sensors (14248220); Dec2024, Vol. 24 Issue 24, p7924, 26p
Subject Terms: ARTIFICIAL neural networks, LONG short-term memory, PETRI nets, VIRTUAL reality, COMPUTER network security
Abstract: Intrusion Detection Systems (IDSs) are a crucial component of modern corporate firewalls. The ability of IDS to identify malicious traffic is a powerful tool to prevent potential attacks and keep a corporate network secure. In this context, Machine Learning (ML)-based methods have proven to be very effective for attack identification. However, traditional approaches are not always applicable in a real-time environment as they do not integrate concrete traffic management after a malicious packet pattern has been identified. In this paper, a novel combined approach to both identify and discard potential malicious traffic in a real-time fashion is proposed. In detail, a Long Short-Term Memory (LSTM) supervised artificial neural network model is provided in which consecutive packet groups are considered as they flow through the corporate network. Moreover, the whole IDS architecture is modeled by a Petri Net (PN) that either blocks or allows packet flow throughout the network based on the LSTM model output. The novel hybrid approach combining LSTM with Petri Nets achieves a 99.71% detection accuracy—a notable improvement over traditional LSTM-only methods, which averaged around 97%. The LSTM–Petri Net approach is an innovative solution combining machine learning with formal network modeling for enhanced threat detection, offering improved accuracy and real-time adaptability to meet the rapid security needs of virtual environments and CPS. Moreover, the approach emphasizes the innovative role of the Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) as a form of "virtual sensing technology" applied to advanced network security. An extensive case study with promising results is provided by training the model with the popular IDS 2018 dataset. [ABSTRACT FROM AUTHOR]
Copyright of Sensors (14248220) is the property of MDPI and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Database: Complementary Index
Full text is not displayed to guests.
FullText Links:
  – Type: pdflink
Text:
  Availability: 1
CustomLinks:
  – Url: https://resolver.ebsco.com/c/xy5jbn/result?sid=EBSCO:edb&genre=article&issn=14248220&ISBN=&volume=24&issue=24&date=20241215&spage=7924&pages=7924-7949&title=Sensors (14248220)&atitle=A%20Petri%20Net%20and%20LSTM%20Hybrid%20Approach%20for%20Intrusion%20Detection%20Systems%20in%20Enterprise%20Networks.&aulast=Volpe%2C%20Gaetano&id=DOI:10.3390/s24247924
    Name: Full Text Finder (for New FTF UI) (s8985755)
    Category: fullText
    Text: Find It @ SCU Libraries
    MouseOverText: Find It @ SCU Libraries
Header DbId: edb
DbLabel: Complementary Index
An: 181914655
RelevancyScore: 1060
AccessLevel: 6
PubType: Academic Journal
PubTypeId: academicJournal
PreciseRelevancyScore: 1060.21325683594
IllustrationInfo
Items – Name: Title
  Label: Title
  Group: Ti
  Data: A Petri Net and LSTM Hybrid Approach for Intrusion Detection Systems in Enterprise Networks.
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Volpe%2C+Gaetano%22">Volpe, Gaetano</searchLink><br /><searchLink fieldCode="AR" term="%22Fiore%2C+Marco%22">Fiore, Marco</searchLink><br /><searchLink fieldCode="AR" term="%22la+Grasta%2C+Annabella%22">la Grasta, Annabella</searchLink><br /><searchLink fieldCode="AR" term="%22Albano%2C+Francesca%22">Albano, Francesca</searchLink><br /><searchLink fieldCode="AR" term="%22Stefanizzi%2C+Sergio%22">Stefanizzi, Sergio</searchLink><br /><searchLink fieldCode="AR" term="%22Mongiello%2C+Marina%22">Mongiello, Marina</searchLink><br /><searchLink fieldCode="AR" term="%22Mangini%2C+Agostino+Marcello%22">Mangini, Agostino Marcello</searchLink>
– Name: TitleSource
  Label: Source
  Group: Src
  Data: Sensors (14248220); Dec2024, Vol. 24 Issue 24, p7924, 26p
– Name: Subject
  Label: Subject Terms
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22ARTIFICIAL+neural+networks%22">ARTIFICIAL neural networks</searchLink><br /><searchLink fieldCode="DE" term="%22LONG+short-term+memory%22">LONG short-term memory</searchLink><br /><searchLink fieldCode="DE" term="%22PETRI+nets%22">PETRI nets</searchLink><br /><searchLink fieldCode="DE" term="%22VIRTUAL+reality%22">VIRTUAL reality</searchLink><br /><searchLink fieldCode="DE" term="%22COMPUTER+network+security%22">COMPUTER network security</searchLink>
– Name: Abstract
  Label: Abstract
  Group: Ab
  Data: Intrusion Detection Systems (IDSs) are a crucial component of modern corporate firewalls. The ability of IDS to identify malicious traffic is a powerful tool to prevent potential attacks and keep a corporate network secure. In this context, Machine Learning (ML)-based methods have proven to be very effective for attack identification. However, traditional approaches are not always applicable in a real-time environment as they do not integrate concrete traffic management after a malicious packet pattern has been identified. In this paper, a novel combined approach to both identify and discard potential malicious traffic in a real-time fashion is proposed. In detail, a Long Short-Term Memory (LSTM) supervised artificial neural network model is provided in which consecutive packet groups are considered as they flow through the corporate network. Moreover, the whole IDS architecture is modeled by a Petri Net (PN) that either blocks or allows packet flow throughout the network based on the LSTM model output. The novel hybrid approach combining LSTM with Petri Nets achieves a 99.71% detection accuracy—a notable improvement over traditional LSTM-only methods, which averaged around 97%. The LSTM–Petri Net approach is an innovative solution combining machine learning with formal network modeling for enhanced threat detection, offering improved accuracy and real-time adaptability to meet the rapid security needs of virtual environments and CPS. Moreover, the approach emphasizes the innovative role of the Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) as a form of "virtual sensing technology" applied to advanced network security. An extensive case study with promising results is provided by training the model with the popular IDS 2018 dataset. [ABSTRACT FROM AUTHOR]
– Name: Abstract
  Label:
  Group: Ab
  Data: <i>Copyright of Sensors (14248220) is the property of MDPI and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract.</i> (Copyright applies to all Abstracts.)
PLink https://login.libproxy.scu.edu/login?url=https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&scope=site&db=edb&AN=181914655
RecordInfo BibRecord:
  BibEntity:
    Identifiers:
      – Type: doi
        Value: 10.3390/s24247924
    Languages:
      – Code: eng
        Text: English
    PhysicalDescription:
      Pagination:
        PageCount: 26
        StartPage: 7924
    Subjects:
      – SubjectFull: ARTIFICIAL neural networks
        Type: general
      – SubjectFull: LONG short-term memory
        Type: general
      – SubjectFull: PETRI nets
        Type: general
      – SubjectFull: VIRTUAL reality
        Type: general
      – SubjectFull: COMPUTER network security
        Type: general
    Titles:
      – TitleFull: A Petri Net and LSTM Hybrid Approach for Intrusion Detection Systems in Enterprise Networks.
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Volpe, Gaetano
      – PersonEntity:
          Name:
            NameFull: Fiore, Marco
      – PersonEntity:
          Name:
            NameFull: la Grasta, Annabella
      – PersonEntity:
          Name:
            NameFull: Albano, Francesca
      – PersonEntity:
          Name:
            NameFull: Stefanizzi, Sergio
      – PersonEntity:
          Name:
            NameFull: Mongiello, Marina
      – PersonEntity:
          Name:
            NameFull: Mangini, Agostino Marcello
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 15
              M: 12
              Text: Dec2024
              Type: published
              Y: 2024
          Identifiers:
            – Type: issn-print
              Value: 14248220
          Numbering:
            – Type: volume
              Value: 24
            – Type: issue
              Value: 24
          Titles:
            – TitleFull: Sensors (14248220)
              Type: main
ResultId 1