Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features
The proliferation of Internet of Things (IoT) applications impact many aspects of life, including smart homes, smart offices, and smart cities, among others. However, it poses significant cybersecurity threats. Intrusion detection systems (IDSs) utilize artificial intelligence, especially deep learn...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2025-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/11112594/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849228546642280448 |
|---|---|
| author | Manlaibaatar Tserenkhuu Md Delwar Hossain Yuzo Taenaka Youki Kadobayashi |
| author_facet | Manlaibaatar Tserenkhuu Md Delwar Hossain Yuzo Taenaka Youki Kadobayashi |
| author_sort | Manlaibaatar Tserenkhuu |
| collection | DOAJ |
| description | The proliferation of Internet of Things (IoT) applications impact many aspects of life, including smart homes, smart offices, and smart cities, among others. However, it poses significant cybersecurity threats. Intrusion detection systems (IDSs) utilize artificial intelligence, especially deep learning, to mitigate these threats. The design of deep learning models and the quality of datasets are two key factors in creating effective IDSs. Randomly selecting hyperparameters and using datasets with irrelevant features can negatively affect model performance and computational complexity. This study proposes an IDS framework to detect various cyberattacks in SDN-based IoT networks utilizing three deep learning algorithms that incorporate hyperparameter tuning and the feature selection process based on explainable artificial intelligence (XAI), which uses domain-constrained features to improve performance and reduce computational complexity. Two recent flow-based datasets were used to train and assess models to validate the proposed framework. We conducted an extensive set of experiments using the subsets of features derived by XAI-based feature selection techniques, and compared their performance against each other, the baseline, and state-of-the-art models. The experimental results reveal that Shapley Additive Explanations and Random Forest feature importance are the reliable feature selection techniques, as they yield consistent results across all deep learning models and different feature subsets. Furthermore, the convolutional neural network model produced a top performance with an accuracy of 99.9% in the InSDN and 98% in the X-IIoTID datasets for multi-class classification. Our study provides guidelines for selecting suitable XAI-based feature selection techniques that incorporate domain-constrained features in the development of IDSs for SDN-based IoT networks. |
| format | Article |
| id | doaj-art-ddf80ee809f146ef8b183e0a04bbb7d2 |
| institution | Kabale University |
| issn | 2169-3536 |
| language | English |
| publishDate | 2025-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj-art-ddf80ee809f146ef8b183e0a04bbb7d22025-08-22T23:15:46ZengIEEEIEEE Access2169-35362025-01-011313686413688010.1109/ACCESS.2025.359559511112594Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained FeaturesManlaibaatar Tserenkhuu0https://orcid.org/0009-0003-4578-9981Md Delwar Hossain1Yuzo Taenaka2Youki Kadobayashi3Graduate School of Information Science, Nara Institute of Science and Technology, Ikoma, Nara, JapanDepartment of Computer Science, Angelo State University, San Angelo, TX, USAGraduate School of Information Science, Nara Institute of Science and Technology, Ikoma, Nara, JapanGraduate School of Information Science, Nara Institute of Science and Technology, Ikoma, Nara, JapanThe proliferation of Internet of Things (IoT) applications impact many aspects of life, including smart homes, smart offices, and smart cities, among others. However, it poses significant cybersecurity threats. Intrusion detection systems (IDSs) utilize artificial intelligence, especially deep learning, to mitigate these threats. The design of deep learning models and the quality of datasets are two key factors in creating effective IDSs. Randomly selecting hyperparameters and using datasets with irrelevant features can negatively affect model performance and computational complexity. This study proposes an IDS framework to detect various cyberattacks in SDN-based IoT networks utilizing three deep learning algorithms that incorporate hyperparameter tuning and the feature selection process based on explainable artificial intelligence (XAI), which uses domain-constrained features to improve performance and reduce computational complexity. Two recent flow-based datasets were used to train and assess models to validate the proposed framework. We conducted an extensive set of experiments using the subsets of features derived by XAI-based feature selection techniques, and compared their performance against each other, the baseline, and state-of-the-art models. The experimental results reveal that Shapley Additive Explanations and Random Forest feature importance are the reliable feature selection techniques, as they yield consistent results across all deep learning models and different feature subsets. Furthermore, the convolutional neural network model produced a top performance with an accuracy of 99.9% in the InSDN and 98% in the X-IIoTID datasets for multi-class classification. Our study provides guidelines for selecting suitable XAI-based feature selection techniques that incorporate domain-constrained features in the development of IDSs for SDN-based IoT networks.https://ieeexplore.ieee.org/document/11112594/Internet of Thingssoftware defined networkdeep learningintrusion detection systemexplainable AIfeature reduction |
| spellingShingle | Manlaibaatar Tserenkhuu Md Delwar Hossain Yuzo Taenaka Youki Kadobayashi Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features IEEE Access Internet of Things software defined network deep learning intrusion detection system explainable AI feature reduction |
| title | Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features |
| title_full | Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features |
| title_fullStr | Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features |
| title_full_unstemmed | Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features |
| title_short | Intrusion Detection System Framework for SDN-Based IoT Networks Using Deep Learning Approaches With XAI-Based Feature Selection Techniques and Domain-Constrained Features |
| title_sort | intrusion detection system framework for sdn based iot networks using deep learning approaches with xai based feature selection techniques and domain constrained features |
| topic | Internet of Things software defined network deep learning intrusion detection system explainable AI feature reduction |
| url | https://ieeexplore.ieee.org/document/11112594/ |
| work_keys_str_mv | AT manlaibaatartserenkhuu intrusiondetectionsystemframeworkforsdnbasediotnetworksusingdeeplearningapproacheswithxaibasedfeatureselectiontechniquesanddomainconstrainedfeatures AT mddelwarhossain intrusiondetectionsystemframeworkforsdnbasediotnetworksusingdeeplearningapproacheswithxaibasedfeatureselectiontechniquesanddomainconstrainedfeatures AT yuzotaenaka intrusiondetectionsystemframeworkforsdnbasediotnetworksusingdeeplearningapproacheswithxaibasedfeatureselectiontechniquesanddomainconstrainedfeatures AT youkikadobayashi intrusiondetectionsystemframeworkforsdnbasediotnetworksusingdeeplearningapproacheswithxaibasedfeatureselectiontechniquesanddomainconstrainedfeatures |