CYBER SECURITY MACHINE LEARNING MODEL ASSESSMENT: PERSPECTIVES FROM THE UNSW-NB15 DATASET

Hazem Salim Abdullah; Harith Abdulghani Ibrahim; Mohamed Waleed Jehad; Ahmed khaldoon abdulateef; Muhammed Saleh

doi:10.61796/ijmi.v3i3.507

Authors

Hazem Salim Abdullah
[email protected]
Directorate of Municipalities, Nineveh Governorate, Mosul, IRAQ
Harith Abdulghani Ibrahim Directorate of Municipalities, Nineveh Governorate, Mosul, IRAQ
Mohamed Waleed Jehad Directorate of Municipalities, Nineveh Governorate, Mosul, IRAQ
Ahmed khaldoon abdulateef Directorate of Municipalities, Nineveh Governorate, Mosul, IRAQ
Muhammed Saleh University Technology Malaysia (UTM), JB, Malaysia

Vol. 3 No. 3 (2026): International Journal Multidisciplinary (IJMI)

Articles

June 17, 2026

Downloads

View Article

Abstract
How to Cite
Metrics
References
License

Objective: Detection of cyberattacks still remains as one if the challenges. Method: The paper compares the performance of five machine learning classifiers namely Decision Tree (DT), XGBoost (XGB), Gaussian Naive Bayes (GNB), Random Forest (RF) and Logistic Regression (LR)) with respect to classifying network traffic as normal or malicious. It leverages the UNSW-NB15 dataset, which incorporates a wide variety of modern attack types and employs extensive data preprocessing, feature evaluation, and data discussion stratified splitting to ensure robust results. Results: The results show that the top performing model, XGBoost, has an accuracy of 93.62 % and AUC at 0.99 which means A great performance. Random forest and decision tree follow with accuracies of 93.60% and 92.93%, although less cumbersome fashions such as logistic regression and Gaussian Nav Bayes appear less accurate due to their limitations in dealing with complex communities in non-subnetworks traffic structure for real-time records tested. Novelty: This underlines the promise of advanced machine expertise, especially ensemble and tree-based perfection strategies, to improve automated cyber risk detection. Future efforts will focus on feature optimization and exploring streaming data.

Abdullah, H. S., Harith Abdulghani Ibrahim, Mohamed Waleed Jehad, Ahmed khaldoon abdulateef, & Muhammed Saleh. (2026). CYBER SECURITY MACHINE LEARNING MODEL ASSESSMENT: PERSPECTIVES FROM THE UNSW-NB15 DATASET. International Journal Multidisciplinary (IJMI), 3(3), 15–27. https://doi.org/10.61796/ijmi.v3i3.507

Download Citation

R. Abdulhammed, M. Faezipour, A. Abuzneid, and A. AbuMallouh, “Deep and machine learning approaches for anomaly-based intrusion detection of imbalanced network traffic,” IEEE Sensors Letters, vol. 3, no. 1, pp. 1–4, 2018.

N. Koroniotis, N. Moustafa, E. Sitnikova, and B. Turnbull, “Towards the development of realistic botnet dataset in the Internet of Things for network forensic analytics: Bot-IoT dataset,” Future Generation Computer Systems, vol. 100, pp. 779–796, 2019, doi: 10.1016/j.future.2019.05.041.

G. Kocher and G. Kumar, “Machine learning and deep learning methods for intrusion detection systems: Recent developments and challenges,” Soft Computing, vol. 25, no. 15, pp. 9731–9763, 2021.

J. Vitorino, R. Andrade, I. Praça, O. Sousa, and E. Maia, “A comparative analysis of machine learning techniques for IoT intrusion detection,” in Springer, pp. 191–207, 2022, doi: 10.1007/978-3-031-08147-7_13.

A. Heidari and M. A. J. Jamali, “Internet of Things intrusion detection systems: A comprehensive review and future directions,” Cluster Computing, vol. 26, no. 6, pp. 3753–3780, 2023, doi: 10.1007/s10586-023-04126-3.

O. V. Salmakayala, S. S. Ghidary, and C. Howard, “Review of IDS, ML and Deep Neural Network Technique in DDoS Attacks,” International Journal of Computer Science, Engineering and Information Technology, vol. 12, no. 4, pp. 123–145, 2024.

L. Diana, P. Dini, and D. Paolini, “Overview on Intrusion Detection Systems for Computers Networking Security,” Computers, vol. 14, no. 3, p. 87, 2025, doi: 10.3390/computers14030087.

R. Alasmari and A. A. Alhogail, “Protecting Smart-Home IoT Devices From MQTT Attacks: An Empirical Study of ML-Based IDS,” IEEE Access, vol. 12, pp. 25993–26004, 2024.

S. Walling and S. Lodh, “Network intrusion detection system for IoT security using machine learning and statistical based hybrid feature selection,” Security and Privacy, vol. 7, no. 6, p. e429, 2024, doi: 10.1002/spy2.429.

M. Imran, N. Haider, M. Shoaib, and I. Razzak, “An intelligent and efficient network intrusion detection system using deep learning,” Computers and Electrical Engineering, vol. 99, p. 107764, 2022, doi: 10.1016/j.compeleceng.2022.107764.

M. Mahmoud, M. Kasem, A. Abdallah, and H. S. Kang, “Ae-LSTM: Autoencoder with LSTM-based intrusion detection in IoT,” in Proc. International Telecommunications Conference (ITC-Egypt), 2022, pp. 1–6, doi: 10.1109/ITC-Egypt55520.2022.9855688.

R. Zhao, Y. Mu, L. Zou, and X. Wen, “A hybrid intrusion detection system based on feature selection and weighted stacking classifier,” IEEE Access, vol. 10, pp. 71414–71426, 2022, doi: 10.1109/ACCESS.2022.3186975.

A. Dahou et al., “Intrusion detection system for IoT based on deep learning and modified reptile search algorithm,” Computational Intelligence and Neuroscience, vol. 2022, Art. no. 6473507, 2022, doi: 10.1155/2022/6473507.

G. Logeswari, S. Bose, and T. J. Anitha, “An intrusion detection system for SDN using machine learning,” Intelligent Automation & Soft Computing, vol. 35, no. 1, pp. 867–880, 2023, doi: 10.32604/iasc.2023.026769.

V. Kumar, D. Sinha, A. K. Das, S. C. Pandey, and R. T. Goswami, “An integrated rule-based intrusion detection system: Analysis on UNSW-NB15 data set and the real time online dataset,” Cluster Computing, vol. 23, no. 2, pp. 1397–1418, 2020.

D. Jing and H.-B. Chen, “SVM Based Network Intrusion Detection for the UNSW-NB15 Dataset,” in Proc. IEEE 13th International Conference on ASIC (ASICON), Chongqing, China, 2019, pp. 1–4.

N. Dangol, A. Eaman, E. Shakshuki, and E. Hassan, “Impact of resampling techniques in deep learning based intrusion detection: A comparative study on NSL-KDD and UNSW-NB15,” Procedia Computer Science, vol. 272, pp. 84–91, 2025, doi: 10.1016/j.procs.2025.10.182.

S. J. Lee, P. D. Yoo, A. T. Asyhari, Y. Jhi, L. Chermak, Y. Y. Chan, and K. Taha, “IMPACT: Impersonation attack detection via edge computing using deep autoencoder and feature abstraction,” IEEE Access, vol. 8, pp. 65520–65529, 2020.

N. Bhusal, M. Gautam, and M. Benidris, “Detection of Cyber Attacks on Voltage Regulation in Distribution Systems Using Machine Learning,” IEEE Access, vol. 9, pp. 40402–40416, 2021.

G. Apruzzese, M. Andreolini, M. Colajanni, and M. Marchetti, “Hardening random forest cyber detectors against adversarial attacks,” IEEE Transactions on Emerging Topics in Computational Intelligence, vol. 4, no. 4, pp. 427–439, 2020, doi: 10.1109/TETCI.2020.2988920.

J. Brownlee, “A gentle introduction to XGBoost for applied machine learning,” Machine Learning Mastery. [Online]. Available: http://machinelearningmastery.com/gentle-introduction-xgboost-appliedmachine-learning/. [Accessed: Mar. 2, 2018].

N. Moustafa, “The UNSW-NB15 Dataset,” Research Data Australia. [Online]. Available: https://researchdata.edu.au/the-unsw-nb15-dataset/1957529. [Accessed: Nov. 9, 2023].

“The UNSW-NB15 Dataset,” UNSW Research. [Online]. Available: https://research.unsw.edu.au/projects/unsw-nb15-dataset. [Accessed: Nov. 9, 2023].

V. Z. Mohale and I. C. Obagbuwa, “Evaluating machine learning-based intrusion detection systems with explainable AI: Enhancing transparency and interpretability,” Frontiers in Computer Science, vol. 7, Art. no. 1520741, 2025, doi: 10.3389/fcomp.2025.1520741.

S. M. Kasongo and Y. Sun, “Performance Analysis of Intrusion Detection Systems Using a Feature Selection Method on the UNSW-NB15 Dataset,” Journal of Big Data, vol. 7, 2020.

K. K. Pal, A. V. Eriksen, and N. Dinh, “XGBoost Feature Selection for Multi-Class and Binary Classification on UNSW-NB15 Dataset,” in Proc. IEEE International Conference on Consumer Electronics (ICCE), 2025, pp. 1–6.