Author
Listed:
- Muhammad Usman Younus,Muhammad Faisal,Kalsoom Safdar,Muhammad Shoaib
(Department of Computer Science & IT,Baba Guru Nanak University,Nankana Sahib, Pakistan.Ecole Doctorale Matheematiques,Informatique, Telecommunication de Toulouse, University of Toulouse(III),Paul Sabatier,Toulouse, France.Department of Computer Science & IT, University of Jhang, Jhang Pakistan.Faculty of Electronic Engineering and Technology, Universiti Malaysia Perlis, 02600 Arau, Perlis, Malaysia.)
Abstract
Software Defined Network (SDN) is a paradigm shift in the wired network; the approach separates the control plane from the data plane. However, such architectural development becomes problematic for IDS due to the inherent limitations of the signature-based models, which cannot keep pace with the increasingly emerging threats. In this paper, the performance of the ensemble learning models is analyzed for anomaly-based intrusion detection of SDNs. we use general and IoT network intrusion datasets to compare different machine learning methodologies for constructing IDS., with the test of the model on SDN network intrusion datasets. We also investigate three Support Vector Machines (SVM), Random Forest (RF), and K-Nearest Neighbors (KNN) algorithms in their base formats and improved versions using ensemble methods, showcasing that the combination significantly enhances detection accuracy, precision, and recall essential for achieving robust SDN security. The weighted-average precision and recall are used to report the performance metrics in order to consider the imbalance across attack categories. In particular, the ensemble model achieved an accuracy of 0.99 on general and IoT datasets, and 0.97 on SDN datasets, with weighted precision of 1.00 and weighted recall of 0.99 and 0.97, respectively. The proposed approach of the ensemble method has the advantage of learning a lot of types of traffic patterns, and the false positive rate as well as the false negative rate are comparatively low, however, this comes at the cost of increased training time and computational complexity. In general, our study reveals the effectiveness and applicability of ensemble learning toward critical security issues related to SDNs.
Suggested Citation
Muhammad Usman Younus,Muhammad Faisal,Kalsoom Safdar,Muhammad Shoaib, 2026.
"Anomaly-Based Intrusion Detection for Software-Defined Networks Through an Ensemble Learning Approach,"
International Journal of Innovations in Science & Technology, 50sea, vol. 8(1), pages 89-101, January.
Handle:
RePEc:abq:ijist1:v:8:y:2026:i:1:p:89-101
Download full text from publisher
Corrections
All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:abq:ijist1:v:8:y:2026:i:1:p:89-101. See general information about how to correct material in RePEc.
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
We have no bibliographic references for this item. You can help adding them by using this form .
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Iqra Nazeer (email available below). General contact details of provider: .
Please note that corrections may take a couple of weeks to filter through
the various RePEc services.
Printed from https://ideas.repec.org/a/abq/ijist1/v8y2026i1p89-101.html