Hybrid Deep Learning Model for Enhanced Intrusion Detection

The rapid growth of cyberattacks, especially Distributed Denial of Service (DDoS), has exposed the limitations of conventional Intrusion Detection System (IDS). These systems often struggle to cope with evolving attack strategies. In recent years, deep learning has provided new opportunities for improving IDS, as it can automatically discover hidden structures in complex data without extensive manual feature engineering. This study develops and evaluates three models, Convolutional Neural Network (CNN), Long Short-Term Memory (LSTM), and a Hybrid CNN-LSTM for intrusion detection using the CIC-DDoS2019 dataset. Preprocessing involved normalization, label encoding, and class balancing using Synthetic Minority Oversampling Technique (SMOTE). Feature selection was carried out using the information gain algorithm performance, the models were trained and evaluated using key metrics such as accuracy, precision, recall, f1-score and Area Under the Curve (AUC) to improve model performance. Experimental results shows that CNN achieved an accuracy of 99.94%, while LSTM performed slightly better with 99.96%, the hybrid CNN-LSTM outperformed both with 99.97% accuracy, precision, and recall, confirming that combining CNN’s spatial learning with LSTM’s temporal sequence modeling leads to superior detection. This study highlights the advantage of hybrid deep learning in network security, reducing both false positives and false negatives. It also provides a practical framework for building IDS capable of adapting to modern attack patterns. Future extensions could focus on real-time implementation, multi-class detection of different attack categories, and explainable AI for improved transparency.

CIC-DDoS2019, Convolutional Neural Network (CNN), Hybrid CNN-LSTM, Intrusion Detection System (IDS)

1. Alghazzawi, D., Bamasag, O., Ullah, H., & Asghar, M. Z. (2021). Efficient detection of DDoS attacks using a hybrid deep learning model with improved feature selection. Applied Sciences, 11(24), 11634. [Google Scholar] [Crossref]

2. Aljawarneh, S., Alsharif, N., & Alsharif, L. (2022). An intelligent intrusion detection system using deep learning for cloud environments. Journal of Information Security and Applications, 65, 103130. https://doi.org/10.1016/j.jisa.2021.103130 [Google Scholar] [Crossref]

3. Almotairi, A., Atawneh, S., Khashan, O. A., & Khafajah, N. M. (2024). Enhancing intrusion detection in IoT networks using machine learning-based feature selection and ensemble models. Systems Science & Control Engineering, 12(1), 2321381. [Google Scholar] [Crossref]

4. Bolodurina, I., Shukhman, A., Parfenov, D., Zhigalov, A., & Zabrodina, L. (2020). Investigation of the problem of classifying unbalanced datasets in identifying distributed denial of service attacks. In Journal of Physics: Conference Series 1679 (4), 042020. [Google Scholar] [Crossref]

5. Dhawas, P., Ramteke, M. A., Thakur, A., Polshetwar, P. V., Salunkhe, R. V., & Bhagat, D. (2024). Big Data Analysis Techniques: Data Preprocessing Techniques, Data Mining Techniques, Machine Learning Algorithm, Visualization. In Big Data Analytics Techniques for Market Intelligence, 183-208. [Google Scholar] [Crossref]

6. Efe, A., & Abacı, İ. N. (2022). Comparison of the host-based intrusion detection systems and networkbased intrusion detection systems. Celal Bayar University Journal of Science, 18(1), 23-32. [Google Scholar] [Crossref]

7. Hindy, H., Atkinson, R., Tachtatzis, C., Colin, J.-N., Bayne, E., & Bellekens, X. (2020). Utilising deep learning techniques for effective zero-day attack detection. arXiv. https://arxiv.org/abs/2006.15344 [Google Scholar] [Crossref]

8. Kim, J., Kim, J., Kim, H., Shim, M., & Choi, E. (2021). CNN-based network intrusion detection against denial-of-service attacks. Electronics, 9(6), 916. https://doi.org/10.3390/electronics9060916 [Google Scholar] [Crossref]

9. LeCun, Y., Bengio, Y., & Hinton, G. (2015). Deep learning. Nature, 521(7553), 436-444 https://doi.org/10.1038/nature14539 [Google Scholar] [Crossref]

10. Olateju, O., Okon, S. U., Igwenagu, U., Salami, A. A., Oladoyinbo, T. O., & Olaniyi, O. O. (2024). Combating the challenges of false positives in AI-driven anomaly detection systems and enhancing data security in the cloud. Available at SSRN 4859958. [Google Scholar] [Crossref]

11. Olugbenga, A. M., Adenike, A. E., Esther, O. O., Michael, A. A., Samsudeen, B. O., & Ibrahim, A. O. (2024). Development of a Distributed Denial of Service Detection Model Using Ensemble Machine Learning Techniques. Adeleke University Journal of Science, 3(1), 205-218. [Google Scholar] [Crossref]

12. Vevera, A. V., & Botezatu, U. E. (2023). Hyperconnected horizons: decoding the digital sovereignty of European smart cities. In Smart Cities International Conference (SCIC) Proceedings, 11, 393-400. [Google Scholar] [Crossref]

13. Yuan, X., AlSaleh, I., Al-Samawi, A., & Nissirat, L. (2021). Novel machine learning approach for DDoS cloud detection: Bayesian-based CNN and data fusion enhancements. Sensors, 24(5), 1418. https://doi.org/10.3390/s24051418 [Google Scholar] [Crossref]

• The Impact of Ownership Structure on Dividend Payout Policy of Listed Plantation Companies in Sri Lanka
• Urban Sustainability in North-East India: A Study through the lens of NER-SDG index
• Performance Assessment of Predictive Forecasting Techniques for Enhancing Hospital Supply Chain Efficiency in Healthcare Logistics
• The Fractured Self in Julian Barnes' Postmodern Fiction: Identity Crisis and Deflation in Metroland and the Sense of an Ending
• Impact of Flood on the Employment, Labour Productivity and Migration of Agricultural Labour in North Bihar