Research on Intrusion Detection Method Based on Transformer and CNN-BiLSTM in Internet of Things

Research on Intrusion Detection Method Based on Transformer and CNN-BiLSTM in Internet of Things

With the widespread deployment of Internet of Things (IoT) devices, their complex network environments and open communication modes have made them prime targets for cyberattacks. Traditional Intrusion Detection Systems (IDS) face challenges in handling complex attack types, data imbalance, and featu...

Full description

Saved in:
Bibliographic Details
Main Authors: Chunhui Zhang, Jian Li, Naile Wang, Dejun Zhang
Format: Article
Language:English
Published: MDPI AG 2025-04-01
Series:Sensors
Subjects:
IoT security
intrusion detection
deep learning
data imbalance
feature selection
Online Access:https://www.mdpi.com/1424-8220/25/9/2725
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:With the widespread deployment of Internet of Things (IoT) devices, their complex network environments and open communication modes have made them prime targets for cyberattacks. Traditional Intrusion Detection Systems (IDS) face challenges in handling complex attack types, data imbalance, and feature extraction difficulties in IoT environments. Accurately detecting abnormal traffic in IoT has become increasingly critical. To address the limitation of single models in comprehensively capturing the diverse features of IoT traffic, this paper proposes a hybrid model based on CNN-BiLSTM-Transformer, which better handles complex features and long-sequence dependencies in intrusion detection. To address the issue of data class imbalance, the Borderline-SMOTE method is introduced to enhance the model’s ability to recognize minority class attack samples. To tackle the problem of redundant features in the original dataset, a comprehensive feature selection strategy combining XGBoost, Chi-square (Chi2), and Mutual Information is adopted to ensure the model focuses on the most discriminative features. Experimental validation demonstrates that the proposed method achieves 99.80% accuracy on the CIC-IDS 2017 dataset and 97.95% accuracy on the BoT-IoT dataset, significantly outperforming traditional intrusion detection methods, proving its efficiency and accuracy in detecting abnormal traffic in IoT environments.
ISSN:1424-8220

Similar Items