Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Gowtham-R-19/AI-CPS-Cyber-Attack-Detection-System

BranchesTags
Β 
Β 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

251 Commits
code
code
Β 
Β 
data/processed
data/processed
Β 
Β 
documentation
documentation
Β 
Β 
images
images
Β 
Β 
models
models
Β 
Β 
scenarios
scenarios
Β 
Β 
visualizations
visualizations
Β 
Β 
.gitignore
.gitignore
Β 
Β 
CITATION.cff
CITATION.cff
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 
requirements.txt
requirements.txt
Β 
Β 

Repository files navigation

πŸ” Cyber Attack Detection System using ANN and OLS

  • Course: M. Grum – Advanced AI-based Application Systems - Data Science and Business Analytics
  • Instructor: Prof. Dr. Marcus Grum
  • Chair: Junior Chair for Business Information Science, especially AI-based Application Systems
  • Authors: Gowtham Ramakrishna, Vaishnavi Vijaya
  • Institution: University of Potsdam, Germany

πŸ“Œ Project Overview

This project presents an AI-based Cyber Attack Detection System developed as part of the coursework for Advanced AI-based Application Systems (AIBAS) at the University of Potsdam.

The system applies Artificial Neural Networks (ANN) as a non-linear classifier and Ordinary Least Squares (OLS) as a linear baseline to detect malicious network traffic. The project emphasizes reproducibility, data integrity, structured experimentation, and deployable system design.

The work demonstrates the complete AI lifecycle:

  • Dataset acquisition and validation
  • Data preprocessing and feature engineering
  • Model training and evaluation
  • Integrity and leakage validation
  • Containerized deployment and inference
  • Interpretable prediction outputs

🎯 Objectives

  • Build an AI-based intrusion detection system
  • Compare ANN and OLS models under identical conditions
  • Ensure experimental reproducibility and integrity
  • Enable containerized inference via Docker Compose
  • Provide auditable and interpretable predictions

πŸ“Š Dataset

NSL-KDD Dataset

This project is based on the NSL-KDD dataset, a refined benchmark dataset for network intrusion detection research.

At the time of development, the dataset was not directly downloadable from the original source in a machine-accessible format.
Therefore, a publicly available Kaggle mirror was used to obtain the dataset in a reproducible manner.

The dataset is synthetic, GDPR-compliant, and widely used for academic and educational research.

🧠 Modeling Approach

Artificial Neural Network (ANN)

  • Feed-forward neural network implemented using TensorFlow/Keras
  • Binary classification (Normal vs Attack)
  • Dropout-based regularization
  • Optimized for strong generalization performance

Ordinary Least Squares (OLS)

  • Linear baseline classifier
  • Provides a transparent and computationally efficient reference
  • Highlights trade-offs between complexity and performance

Both models share the same preprocessing pipeline and feature space to ensure fair comparison.

🐳 System Architecture (High Level)

The system is composed of four Docker-based components:

  • learningBase – training and testing datasets
  • activationBase – activation (inference) dataset
  • knowledgeBase – trained models and preprocessing artifacts
  • codeBase – inference logic and prediction pipeline

All components are orchestrated using Docker Compose to enable end-to-end execution.

πŸš€ Getting Started

1️⃣ Fork and Clone the Repository

git clone https://github.com/Gowtham-R-19/AI-CPS.git
cd AI-CPS

2️⃣ Python Environment (Optional – for local analysis)

python -m venv venv
source venv/bin/activate   # Linux / macOS
venv\Scripts\activate      # Windows

Install required Python packages:

pip install -r requirements.txt

This step is required only if you want to run training, evaluation, or analysis locally.

3️⃣ Docker Prerequisites

Ensure Docker and Docker Compose are installed.

Verify installation:

docker --version
docker compose version

4️⃣ Create Docker Volume (Required)

A shared Docker volume is used for communication between containers.

docker volume create ai_system

▢️ Running Inference with Docker Compose

πŸ”Ή ANN-Based Inference

cd scenarios/apply_annSolution_cyberAttackDetection
docker compose up

This will:

- Load the trained ANN model
- Apply preprocessing
- Run inference on activation data
- Display predictions and confidence levels in the terminal

πŸ”Ή OLS-Based Inference

cd scenarios/apply_olsSolution_cyberAttackDetection
docker compose up

This executes the same pipeline using the OLS baseline model.

πŸ“Š Viewing Inference Results

Inference results are printed directly in the terminal and include:

- Prediction (Normal / Attack)
- Confidence score
- Risk-level interpretation
- End-to-end inference status

Each pipeline exits cleanly after completion.

πŸ“š References & Tools

TensorFlow / Keras – https://www.tensorflow.org
Docker – https://www.docker.com
NSL-KDD (UNB) – https://www.unb.ca/cic/datasets/nsl.html
NSL-KDD (Kaggle Mirror) – https://www.kaggle.com/datasets/hassan06/nslkdd
University of Potsdam – https://www.uni-potsdam.de

ℹ️ License and usage

Licensed under the AGPL-3.0 license.
- Developed strictly for academic and educational purposes
- Part of the Advanced AI-based Application Systems (AIBAS) coursework
- Not intended for production deployment
- University of Potsdam Β· AIBAS Coursework

About

This repo supports the flexible, node-independent, Over-The-Air realization of (a) situational ANN application, (b) ANN training and validation as well as (c) ANN refinement.

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • Python 94.6%
  • Dockerfile 5.4%