A LogitBoost-based Algorithm for Detecting Known and Unknown Web Attacks

Muhammad Hilmi Kamarudin, Carsten Maple, Tim Watson, Nader Sohrabi Safa

Research output: Contribution to journalArticlepeer-review

73 Citations (Scopus)
259 Downloads (Pure)


The rapid growth in the volume and importance of web communication throughout the Internet has heightened the need for better security protection. Security experts, when protecting systems, maintain a database featuring signatures of a large number of attacks to assist with attack detection. However, used in isolation, this can limit the capability of the system as it is only able to recognise known attacks. To overcome the problem, we propose an anomaly based intrusion detection system using an ensemble classification approach to detect unknown attacks on web servers. The process involves removing irrelevant and redundant features utilising a filter and wrapper selection procedure. Logitboost (LB) is then employed together with Random Forests (RF) as a weak classifier. The proposed ensemble technique was evaluated with some artificial datasets namely NSL-KDD, an improved version of the old KDD Cup from 1999, and the recently published UNSW-NB15 dataset. The experimental results show that our approach demonstrates superiority, in terms of accuracy and detection rate over the traditional approaches, whilst preserving low false rejection rates.
Original languageEnglish
Pages (from-to)26190 - 26200
Number of pages11
JournalIEEE Access
Publication statusPublished - 3 Nov 2017
Externally publishedYes


Dive into the research topics of 'A LogitBoost-based Algorithm for Detecting Known and Unknown Web Attacks'. Together they form a unique fingerprint.

Cite this