COMPUTER INTRUSION DETECTION WITH CLASSIFICATION AND ANOMALY DETECTION, USING SVMs
作者: MIKE FUGATE , JAMES R. GATTIKER
DOI: 10.1142/S0218001403002459
关键词:
摘要: This paper describes experiences and results applying Support Vector Machine (SVM) to a Computer Intrusion Detection (CID) dataset. First, issues in supervised classification are discussed, then the incorporation of anomaly detection enhancing modeling prediction cyber-attacks. SVM methods seen as competitive with benchmark other studies, used standard for investigation. The approaches compare one class SVMs thresholded Mahalanobis distance define support regions. Results performance investigate joint detection. dataset is DARPA/KDD-99 publicly available features from network packets, classified into nonattack four-attack categories.
sci-hub.se 参考文章(5)
Charles Elkan, Results of the KDD'99 classifier learning ACM SIGKDD Explorations Newsletter. ,vol. 1, pp. 63- 64 ,(2000) , 10.1145/846183.846199
David J. Marchette, Computer Intrusion Detection and Network Monitoring Springer New York. ,(2001) , 10.1007/978-1-4757-3458-4
Ronald Christensen, Plane Answers to Complex Questions Springer Texts in Statistics. ,(1996) , 10.1007/978-1-4757-2477-6
Nello Cristianini, John Shawe-Taylor, An Introduction to Support Vector Machines and Other Kernel-based Learning Methods Cambridge University Press. ,(2000) , 10.1017/CBO9780511801389
Stephen I. Gallant, Neural Network Learning and Expert Systems The MIT Press. ,(1993) , 10.7551/MITPRESS/4931.001.0001