A Hybrid Framework for Intrusion Detection in Healthcare Systems Using Deep Learning

M Akshay Kumaar; Duraimurugan Samiayya; P M Durai Raj Vincent; Kathiravan Srinivasan; Chuan-Yu Chang; Harish Ganesh

doi:10.3389/fpubh.2021.824898

A Hybrid Framework for Intrusion Detection in Healthcare Systems Using Deep Learning

Front Public Health. 2022 Jan 12:9:824898. doi: 10.3389/fpubh.2021.824898. eCollection 2021.

Authors

M Akshay Kumaar¹, Duraimurugan Samiayya², P M Durai Raj Vincent³, Kathiravan Srinivasan⁴, Chuan-Yu Chang^{5

6}, Harish Ganesh²

Affiliations

¹ BrainSightAI, Bangalore, India.
² Department of Information Technology, St. Joseph's College of Engineering, Chennai, India.
³ School of Information Technology and Engineering, Vellore Institute of Technology, Vellore, India.
⁴ School of Computer Science and Engineering, Vellore Institute of Technology, Vellore, India.
⁵ Department of Computer Science and Information Engineering, National Yunlin University of Science and Technology, Douliu, Taiwan.
⁶ Service Systems Technology Center, Industrial Technology Research Institute, Hsinchu, Taiwan.

Abstract

The unbounded increase in network traffic and user data has made it difficult for network intrusion detection systems to be abreast and perform well. Intrusion Systems are crucial in e-healthcare since the patients' medical records should be kept highly secure, confidential, and accurate. Any change in the actual patient data can lead to errors in the diagnosis and treatment. Most of the existing artificial intelligence-based systems are trained on outdated intrusion detection repositories, which can produce more false positives and require retraining the algorithm from scratch to support new attacks. These processes also make it challenging to secure patient records in medical systems as the intrusion detection mechanisms can become frequently obsolete. This paper proposes a hybrid framework using Deep Learning named "ImmuneNet" to recognize the latest intrusion attacks and defend healthcare data. The proposed framework uses multiple feature engineering processes, oversampling methods to improve class balance, and hyper-parameter optimization techniques to achieve high accuracy and performance. The architecture contains <1 million parameters, making it lightweight, fast, and IoT-friendly, suitable for deploying the IDS on medical devices and healthcare systems. The performance of ImmuneNet was benchmarked against several other machine learning algorithms on the Canadian Institute for Cybersecurity's Intrusion Detection System 2017, 2018, and Bell DNS 2021 datasets which contain extensive real-time and latest cyber attack data. Out of all the experiments, ImmuneNet performed the best on the CIC Bell DNS 2021 dataset with about 99.19% accuracy, 99.22% precision, 99.19% recall, and 99.2% ROC-AUC scores, which are comparatively better and up-to-date than other existing approaches in classifying between requests that are normal, intrusion, and other cyber attacks.

Keywords: artificial intelligence; big data; deep learning; healthcare; network security; neural networks.

Publication types

Research Support, Non-U.S. Gov't

MeSH terms

Artificial Intelligence
Canada
Deep Learning*
Delivery of Health Care
Humans
Internet of Things*