Ensemble-based methods for intrusion detection
作者: Alexandre Balon-Perin
DOI:
关键词:
摘要: Abstract The master thesis focuses on ensemble approaches applied to intrusion detection systems (IDSs). approach is a relatively new trend in artificial intelligence which several machine learning algorithms are combined. main idea exploit the strengths of each algorithm obtain robust classifier. Moreover, ensembles particularly useful when problem can be segmented into subproblems. In this case, module ensemble, include one or more algorithms, assigned particular subproblem. Network attacks divided four classes: denial service, user root, remote local and probe. One designed work itself an decision trees specialized class attacks. inner structure uses bagging techniques increase accuracy IDS. Experiments showed that IDSs better results treated as separate handled by algorithms. This have also concluded these need trained with specific subsets fea- tures selected according their relevance attack being detected. efficiency highlighted. all experiments, was able bring down number false positives negatives. However, we observed limitations KDD99 dataset. particular, distribution examples between training set test made difficult evaluation for attack.
oatd.org参考文章(52)
James A. Mahaffey, James D. Cannady Jr., Brandon Craig Rhodes, Multiple Self-Organizing Maps for Intrusion Detection ,(2000)
Emna Bahri, Nouria Harbi, Hoa Nguyen Huu, Approach based ensemble methods for better and faster intrusion detection computational intelligence and security. pp. 17- 24 ,(2011) , 10.1007/978-3-642-21323-6_3
Ajith Abraham, Johnson Thomas, Distributed Intrusion Detection Systems: A Computational Intelligence Approach IGI Global. pp. 1332- 1353 ,(2008) , 10.4018/978-1-59140-640-2.CH005
D. M. Gregg, W. J. Blackert, D. C. Furnanage, D. V. Heinbuch, Denial of Service (DOS) Attack Assessment Analysis Report Defense Technical Information Center. ,(2001) , 10.21236/ADA398264
Pavel Laskov, Patrick Düssel, Christin Schäfer, Konrad Rieck, Learning intrusion detection: supervised or unsupervised? international conference on image analysis and processing. pp. 50- 57 ,(2005) , 10.1007/11553595_6
Timothy N. Newsham, Thomas H. Ptacek, Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection ,(1998)
Luca Foschini, Ashish V. Thapliyal, Lorenzo Cavallaro, Christopher Kruegel, Giovanni Vigna, A Parallel Architecture for Stateful, High-Speed Intrusion Detection international conference on information systems security. pp. 203- 220 ,(2008) , 10.1007/978-3-540-89862-7_18
Abdulrahman Alharby, Hideki Imai, Hybrid Intrusion Detection Model Based on Ordered Sequences Lecture Notes in Computer Science. pp. 352- 365 ,(2005) , 10.1007/11560326_27
John R. Koza, Genetic Programming: On the Programming of Computers by Means of Natural Selection ,(1992)