Explainable AI Framework for Intrusion Detection Systems

Kumar, Sidhant; Yadaw, Anil Kumar

doi:https://doi.org/10.55041/ijcope.v2i5.750

Volume 02, Issue 05

Published on: May 2026

EXPLAINABLE AI FRAMEWORK FOR INTRUSION DETECTION SYSTEMS

Sidhant Kumar Anil Kumar Yadaw

Sagar Choudhary

Department of CSE, Quantum University, Roorkee, India

DOI:https://doi.org/10.55041/ijcope.v2i5.750

Article Status

Plagiarism Passed Peer Reviewed Open Access

Available Documents

Download PDF Review Report

Abstract

Cybersecurity is a fast-changing field where data patterns are always shifting. Attackers develop new ways to break into digital systems and networks. Due to this ongoing threat, Intrusion Detection Systems (IDS) are vital for protecting modern cyber infrastructure. Recently, Machine Learning (ML) and Deep Learning (DL) based intrusion detection systems have shown notable improvements in spotting malicious activities and identifying cyber-attacks more accurately. Deep neural networks can learn complex patterns from large datasets, which leads to better detection compared to traditional methods. However, as these models become more accurate and complex, they also become harder to understand, making it challenging to trust and use them in real-world situations. Many deep learning models operate like “black boxes”; the reasoning behind their predictions is often unclear.

This research paper suggests an Explainable Artificial Intelligence (XAI) framework for Network Intrusion Detection Systems. The goal is to improve transparency and trust in machine learning-based security solutions. The framework combines deep neural networks with explainability techniques to give useful insights into the decision-making process of the model throughout different stages of the machine learning pipeline. The study uses the NSL-KDD dataset to assess the performance of this approach. Various XAI techniques, such as SHAP, LIME, Contrastive Explanations Method (CEM), ProtoDash, and Boolean Decision Rules via Column Generation (BRCG), are used to create explanations for the predictions made by the IDS model. These methods help identify which features have the most impact on detecting cyber-attacks and evaluate their influence on the final prediction. The results show that combining deep learning with explainable AI can improve both detection accuracy and model transparency in cybersecurity applications.

Keywords: classification, intrusion detection system, cybersecurity, explainability, SHAP scores, explainable AI, Deep neural network, SHAP, LIME, AIX 360, BRCG, CEM, ProtoDash, local explanations, global explanations, rules

How to Cite this Paper

Kumar, S. & Yadaw, A. K. (2026). Explainable AI Framework for Intrusion Detection Systems. International Journal of Creative and Open Research in Engineering and Management, <i>02</i>(05). https://doi.org/10.55041/ijcope.v2i5.750

Kumar, Sidhant, and Anil Yadaw. "Explainable AI Framework for Intrusion Detection Systems." International Journal of Creative and Open Research in Engineering and Management, vol. 02, no. 05, 2026, pp. . doi:https://doi.org/10.55041/ijcope.v2i5.750.

Kumar, Sidhant, and Anil Yadaw. "Explainable AI Framework for Intrusion Detection Systems." International Journal of Creative and Open Research in Engineering and Management 02, no. 05 (2026). https://doi.org/https://doi.org/10.55041/ijcope.v2i5.750.

Search & Index

References

S. W. M. M. Daniel L. Marino, "An Adversarial Approach for Explainable AI in Intrusion Detection Systems," in IECON 2018 - 44th Annual Conference of the IEEE Industrial Electronics Society, Washington, DC, 2018, pp. 3237-3243, doi: 10.1109/IECON.2018.8591457.

Z. Y. Y. X. W. Maonan Wang, "An Explainable Machine Learning Framework for Intrusion Detection System," IEEE Access , vol. 8, pp. 73127 - 73141, 16 April 2020.

Gunning, "Explainable Artificial Intelligence (XAI)," DARPA/I2O, November 2017.

[Online]. Available: https://www.darpa.mil/attachments/XAIProgramUpdate.pdf.

S. Maheshkumar Sabhnani, "KDD Feature Set Complaint Heuristic Rules for R2L Attack Detection," in Proceedings of the International Conference on Security and Management, SAM '03, June 23 - 26, 2003, Las Vegas, Nevada, USA, Volume 1

V. K. S. P. P. Rahul K. Vigneswaran, "Evaluating Shallow and Deep Neural Networks for Network Intrusion Detection Systems in Cyber Security," in In 2018 9th International Conference on Computing, Communication and Networking Technologies (ICCCNT) (pp. 16). IEEE., 2018.

Lundberg, "SHAP," 2020. [Online]. Available: https://github.com/slundberg/shap.

-l. l. Scott M. Lundberg, "A Unified Approach to Interpreting Model Predictions," in Advances in Neural Information Processing Systems 30 , 2017.

G. D. W. Sanjeeb Dash, "Boolean Decision Rules via Column Generation," in Advances in Neural Information Processing Systems 31, 2018.

D. G. C. C. A. Karthik S. Gurumoorthy, "Efficient Data Representation by Selecting Prototypes with Importance Weights," in International Conference on Data Mining (ICDM), 2019.

Ethical Compliance & Review Process

•All submissions are screened under plagiarism detection.
•Review follows editorial policy.
•Authors retain copyright.
•Peer Review Type: Double-Blind Peer Review
•Published on: May 24 2026

CCBYNC

This article is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License. You are free to share and adapt this work for non-commercial purposes with proper attribution.

View License

Back to Volume 02, Issue 05 View All Issues Next Article

← Previous Article

Explainable AI Based Smart Job Scam Detection System Using Hybrid NLP & Behavioural Features

Next Article →

Explainable and Bias-Aware LLM Based Resume Screening System for Fair Automated Recruitment