Real-time Intrusion Detection System based on Self-Organized Maps and Feature Correlations

被引：1

作者：

Oh, Hayoung ^{[1
]}

Chae, Kijoon ^{[2
]}

机构：

[1] Seoul Natl Univ, Dept Comp Sci & Engn, Seoul 151744, South Korea

[2] Ewha Womans Univ, Dept Comp Engn, Seoul 120750, South Korea

来源：

THIRD 2008 INTERNATIONAL CONFERENCE ON CONVERGENCE AND HYBRID INFORMATION TECHNOLOGY, VOL 2, PROCEEDINGS | 2008年

关键词：

Real time Intrusion Detection System; Countermeasures; Supervised Learing; Unsupervised Learning; Correlations; Network Security;

D O I：

10.1109/ICCIT.2008.362

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Detecting network intrusion has been not only critical but also difficult in the network security research area. Traditional supervised learning techniques are not appropriate to detect anomalous behaviors and new attacks because of temporal changes in network intrusion patterns and characteristics. Therefore, unsupervised learning techniques such as SOM (Self-Organizing Map) are more appropriate for anomaly detection. In this paper, we propose a real-time intrusion detection system based on SOM that groups similar data and visualize their clusters. Our system labels the map produced by SOM using correlations between features. We experiments our system with KDD Cup 1999 data set. Our system yields the reasonable misclassification rates and takes 0.5 seconds to decide whether a behavior is normal or attack.

引用

页码：1154 / +

页数：2

共 50 条

[1] A Self-Organized Multiagent System for Intrusion Detection
Palomo, Esteban J.
Dominguez, Enrique
Luque, Rafael M.
Munoz, Jose
[J]. AGENTS AND DATA MINING INTERACTION, 2009, 5680 : 84 - 94
[2] Self-organized feature maps and information theory
Holthausen, K
Breidbach, O
[J]. NETWORK-COMPUTATION IN NEURAL SYSTEMS, 1997, 8 (02) : 215 - 227
[3] SELF-ORGANIZED FORMATION OF TOPOLOGICALLY CORRECT FEATURE MAPS
KOHONEN, T
[J]. BIOLOGICAL CYBERNETICS, 1982, 43 (01) : 59 - 69
[4] Feature weighting and selection for a real-time network intrusion detection system based on GA with KNN
Su, Ming-Yang
Chang, Kai-Chi
Wei, Hua-Fu
Lin, Chun-Yuen
[J]. INTELLIGENCE AND SECURITY INFORMATICS, PROCEEDINGS, 2008, 5075 : 195 - 204
[5] A Novel Real-Time Coal Miner Localization and Tracking System Based on Self-Organized Sensor Networks
Wang, Yang
Huang, Liusheng
Yang, Wei
[J]. EURASIP JOURNAL ON WIRELESS COMMUNICATIONS AND NETWORKING, 2010,
[6] A Self-Organized Scheduling Algorithm for Embedded Real-Time Systems
Bendib, Sonia Sabrina
Kalla, Hamoudi
Kalla, Salim
Hocine, Riadh
[J]. INTERNATIONAL JOURNAL OF EMBEDDED AND REAL-TIME COMMUNICATION SYSTEMS (IJERTCS), 2021, 12 (02): : 57 - 73
[7] A Novel Real-Time Coal Miner Localization and Tracking System Based on Self-Organized Sensor Networks
Yang Wang
Liusheng Huang
Wei Yang
[J]. EURASIP Journal on Wireless Communications and Networking, 2010
[8] Self-organized criticality & stochastic learning based intrusion detection system for wireless sensor networks
Doumit, SS
Agrawal, DP
[J]. MILCOM 2003 - 2003 IEEE MILITARY COMMUNICATIONS CONFERENCE, VOLS 1 AND 2, 2003, : 609 - 614
[9] Robust Real-time Intrusion Detection System
Kim, Byung-Joo
Kim, Il-Kon
[J]. JOURNAL OF INFORMATION PROCESSING SYSTEMS, 2005, 1 (01): : 9 - 13
[10] SwiftIDS: Real-time intrusion detection system based on LightGBM and parallel intrusion detection mechanism
Jin, Dongzi
Lu, Yiqin
Qin, Jiancheng
Cheng, Zhe
Mao, Zhongshu
[J]. COMPUTERS & SECURITY, 2020, 97

← 1 2 3 4 5 →