Combining Multiple Techniques for Intrusion Detection
作者: Chaker Katar
DOI:
关键词: Intrusion detection system 、 Artificial neural network 、 Data mining 、 Decision tree 、 ALARM 、 Anomaly-based intrusion detection system 、 Engineering 、 Normal behaviour 、 Naive Bayes classifier 、 Overall performance
摘要: Summary Most intrusion detection systems (IDS) are based on a single algorithm that is designed to either model the normal behaviour patterns or attack signatures in network data traffic. often, these fail provide adequate alarm capability reduces false positive and negative rates. We here propose double multiple-model approach capable of enhancing overall performance IDS. In first step, every group identical models combined independently rest groups produce fused model. Then all final Our IDS adopted three reasoning methods: Naive Bayesian, Neural Nets, Decision Trees. used Darpa taxonomy KDD Intrusion Detection Dataset demonstrate working our
ijcsns.org 参考文章(22)
Gürsel Serpen, Maheshkumar Sabhnani, Application of Machine Learning Algorithms to KDD Intrusion Detection Dataset within Misuse Detection Context. MLMTA. pp. 209- 215 ,(2003)
M.A. Bullimore, S. Parthasarathy, C. Roberts, A. Mahmoud, M.D. Twa, Automated Decision Tree Classification of Keratoconus From Videokeratography Investigative Ophthalmology & Visual Science. ,vol. 46, pp. 1082- 1082 ,(2005)
Ian Ruthven, Mounia Lalmas, Using Dempster-Shafer's Theory of Evidence to Combine Aspects of Information Use intelligent information systems. ,vol. 19, pp. 267- 301 ,(2002) , 10.1023/A:1020114205638
Andreas Wespi, Marc Dacier, Hervé Debar, A revised taxonomy for intrusion-detection systems Annales Des Télécommunications. ,vol. 55, pp. 361- 378 ,(2000) , 10.1007/BF02994844
Bogdan Gabrys, Dymitr Ruta, An Overview of Classifier Fusion Methods ,(2000)
Josef Kittler, A Framework for Classifier Fusion: Is It Still Needed? Lecture Notes in Computer Science. pp. 45- 56 ,(2000) , 10.1007/3-540-44522-6_5
Sotiris Diplaris, Grigorios Tsoumakas, Pericles A. Mitkas, Ioannis Vlahavas, Protein Classification with Multiple Algorithms Advances in Informatics. pp. 448- 456 ,(2005) , 10.1007/11573036_42
Gary Stein, Bing Chen, Annie S. Wu, Kien A. Hua, Decision tree classifier for network intrusion detection with GA-based feature selection Proceedings of the 43rd annual southeast regional conference on - ACM-SE 43. pp. 136- 141 ,(2005) , 10.1145/1167253.1167288
Chinmay R Parikh, Michael J Pont, N Barrie Jones, Application of Dempster—Shafer theory in condition monitoring applications: a case study Pattern Recognition Letters. ,vol. 22, pp. 777- 785 ,(2001) , 10.1016/S0167-8655(01)00014-9
Christos Siaterlis, Basil Maglaris, Towards multisensor data fusion for DoS detection acm symposium on applied computing. pp. 439- 446 ,(2004) , 10.1145/967900.967992