Abstract
Due to the increasing complexity of web-based attacks, their detection has become more challenging in recent years. Relying solely on traditional intrusion detection systems may no longer suffice. Recent research highlights the necessity of adopting machine learning techniques to prevent and detect attacks. To address this, the authors of this study employed the CIC-IDS 2017 dataset and utilized the GridSearchCv algorithm for fine-tuning hyperparameters. This research primarily focuses on evaluating tree-based learning algorithms for web-based attack detection. Specifically, the three most widely used supervised learning algorithms-Decision Tree, Random Forest, and XGBoost-were examined. The experimental outcomes showcased the superiority of the XGBoost classifier over the Random Forest and Decision Tree classifiers in multiple performance metrics. These metrics encompass accuracy, recall, F-value, and false negative rate (FNR), achieving values of 99.994%, 99.550%, 99.774%, and 0.45%, respectively. Regarding precision and false positive rate (FPR), the authors observed that both XGBoost and Random Forest outperformed the Decision Tree classifier. Notably, XGBoost and Random Forest achieved values of 100% precision and 0% FPR, respectively. It’s worth mentioning that the Decision Tree classifier demonstrated quicker training and testing processes compared to the other classifiers.
Yassine Sadqi—These authors contributed equally to this work.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Sadqi, Y., Maleh, Y.: A systematic review and taxonomy of web applications threats. Inf. Secur. J.: A Glob. Perspect. 1–27 (2021)
Oumaima, C., Abdeslam, R., Yassine, S., Abderrazek, F.: Experimental study on the effectiveness of machine learning methods in web intrusion detection. In: The International Conference on Information, Communication & Cybersecurity, pp. 486–494. Springer, Cham (2021)
Chakir, O., Sadqi, Y., Maleh, Y.: Evaluation of open-source web application firewalls for cyber threat intelligence. Big Data Analytics and Intelligent Systems for Cyber Threat Intelligence, 9781003373384–3 (2023)
Sadqi, Y., Mekkaoui, M.: Design challenges and assessment of modern web applications intrusion detection and prevention systems (IDPS). In: The Proceedings of the Third International Conference on Smart City Applications, pp. 1087–1104. Springer, Cham (2021)
Chakir, O., Rehaimi, A., Sadqi, Y., Krichen, M., Gaba, G.S., Gurtov, A.: An empirical assessment of ensemble methods and traditional machine learning techniques for web-based attack detection in industry 5.0. J. King Saud Univ.-Comput. Inf. Sci. 35(3), 103–119 (2023)
Kozik, R., Choraś, M., Renk, R., Hołubowicz, W.: A proposal of algorithm for web applications cyber attack detection. In: IFIP International Conference on Computer Information Systems and Industrial Management, pp. 680–687. Springer, Berlin, Heidelberg (2015)
Smitha, R., Hareesha, K.S., Kundapur, P.P.: A machine learning approach for web intrusion detection: MAMLS perspective. In: Soft Computing and Signal Processing, pp. 119–133. Springer, Singapore (2019)
Khan, N., Abdullah, J., Khan, A.S.: Defending malicious script attacks using machine learning classifiers. Wirel. Commun. Mob. Comput. (2017)
Mereani, F.A., Howe, J.M.: Detecting cross-site scripting attacks using machine learning. In: International Conference on Advanced Machine Learning Technologies and Applications, pp. 200–210. Springer, Cham (2018)
Tripathy, D., Gohil, R., Halabi, T.: Detecting SQL injection attacks in cloud SaaS using machine learning. In: 2020 IEEE 6th Intl Conference on Big Data Security on Cloud (BigDataSecurity), IEEE Intl Conference on High Performance and Smart Computing, (HPSC) and IEEE Intl Conference on Intelligent Data and Security (IDS), pp. 145–150. IEEE (2020)
Panigrahi, R., Borah, S.: A detailed analysis of CICIDS2017 dataset for designing intrusion detection systems. Int. J. Eng. Technol. 7(3.24), 479–482 (2018)
Alrowaily, M., Alenezi, F., Lu, Z.: Effectiveness of machine learning based intrusion detection systems. In: International Conference on Security, Privacy and Anonymity in Computation, Communication and Storage, pp. 277–288. Springer, Cham (2019)
Liu, C., Yang, J., Wu, J.: Web intrusion detection system combined with feature analysis and SVM optimization. EURASIP J. Wirel. Commun. Netw. 2020(1), 1–9 (2020)
Mokbal, F.M.M., Dan, W., Xiaoxi, W., Wenbin, Z., Lihua, F.: XGBXSS: an extreme gradient boosting detection framework for cross-site scripting attacks based on hybrid feature selection approach and parameters optimization. J. Inf. Secur. Appl. 58, 102813 (2021)
Scikit-learn, Last Accede 04 January 2023. www.scikit-learn.org/stable/index.html
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Chakir, O., Sadqi, Y. (2023). Detection of Web-Based Attacks using Tree-Based Learning Models: An Evaluation Study. In: Idrissi, N., Hair, A., Lazaar, M., Saadi, Y., Erritali, M., El Kafhali, S. (eds) Artificial Intelligence and Green Computing. ICAIGC 2023. Lecture Notes in Networks and Systems, vol 806. Springer, Cham. https://doi.org/10.1007/978-3-031-46584-0_13
Download citation
DOI: https://doi.org/10.1007/978-3-031-46584-0_13
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-46583-3
Online ISBN: 978-3-031-46584-0
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)