Abnormal traffic detection based on image recognition and attention-residual optimization

Xinpeng Chen^1*Jinan Shen^1*Zhenwu Xu²Fang Liang¹Qiuyang Du¹

• ¹Hubei Minzu University, Enshi, China
• ²Sichuan University, Chengdu, Sichuan Province, China

With the advancement of Internet of Things (IoT) technology, the continuous growth of IoT systems has resulted in the accumulation of massive amounts of data. Consequently, there has been a sharp increase in network attacks, highlighting the need for enhanced network security methods. Network intrusion detection systems play a crucial role in network security.Compared to the traditional approach of using single time-series models to process traffic data, this study innovatively proposes an RMCLA(Residual Network and Multi-scale Convolution Long Short-Term Memory with Attension Mechanisms) network intrusion detection system optimized with attention and residual mechanisms. This model converts traffic data into traffic feature images and enhances the feature contrast through histogram equalization. It then utilizes the powerful performance of convolutional networks to extract abnormal feature points. The attention module and residual network enhance the focus on abnormal points, reducing feature loss and redundancy, thereby achieving effective classification of traffic image processing. We conducted experiments on the CIC-IDS2017 and UNSW-NB15 datasets and compared our model with the latest research models.