Powered by OpenAIRE graph
Found an issue? Give us feedback
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/ ZENODOarrow_drop_down
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/
ZENODO
Article . 2026
License: CC BY
Data sources: ZENODO
ZENODO
Article . 2026
License: CC BY
Data sources: Datacite
ZENODO
Article . 2026
License: CC BY
Data sources: Datacite
 View all 2 versions
Claim

Strengthening Cyber Resilience: Early Detection in Network Intrusion Prevention

descriptionPublicationkeyboard_double_arrow_right Article 12 Jan 2026 English Publisher:JOETSR
Authors: Chris Joseph Levics N.M;

doi: 10.5281/zenodo.18815816 , 10.5281/zenodo.18815817

Strengthening Cyber Resilience: Early Detection in Network Intrusion Prevention

Abstract

Abstract Traditional Network Intrusion Detection Systems (NIDSs) based on pattern matching are inherently limited because they can only identify attacks that correspond to predefined signatures. To overcome this shortcoming, Machine Learning–based NIDS (ML-NIDS) have been introduced, with the goal of detecting anomalies by learning and analyzing protocol behavior. Nevertheless, ML-NIDS remain susceptible to previously unseen attacks, much like signature-based systems. This study examines how ML-NIDS learn and demonstrates that attacks operating outside the feature space represented in the training data can bypass detection. As a mitigation strategy, the study proposes early classification of active sessions before they deviate beyond the model’s learned detection boundaries as an effective means of prevention. Keywords: DecisionTreeclassifier, RandomForestclassifier, XGBoost classifier, AdaBoost classifier, ANN, CNN.

Keywords

DecisionTreeclassifier, XGBoost classifier, Random Forest classifier, AdaBoost classifier, ANN, CNN

  • BIP!
    Impact byBIP!
    selected citations
    These citations are derived from selected sources.
    This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
    		 0
    popularity
    This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
    		 Average
    influence
    This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
    		 Average
    impulse
    This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.
    		 Average
Powered by OpenAIRE graph
Found an issue? Give us feedback
selected citations
These citations are derived from selected sources.
This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
BIP!Citations provided by BIP!
popularity
This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
BIP!Popularity provided by BIP!
influence
This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
BIP!Influence provided by BIP!
impulse
This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.
BIP!Impulse provided by BIP!
0
Average
Average
Average