Network intrusion detection using statistical probability distribution

被引:0
|
作者
Mun, Gil-Jong
Kim, Yong-Min
Kim, DongKook
Noh, Bong-Nam [1 ]
机构
[1] Chonnam Natl Univ, Interdisciplinary Program Informat Secur, Kwangju 500757, South Korea
[2] Chonnam Natl Univ, Dept Elect Commerce, Yeosu 550749, South Korea
[3] Chonnam Natl Univ, Div Elect Comp & Informat Engn, Kwangju 500757, South Korea
来源
COMPUTATIONAL SCIENCE AND ITS APPLICATIONS - ICCSA 2006, PT 2 | 2006年 / 3981卷
关键词
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
It is very difficult to select useful measures and to generate patterns detecting attacks from network. Patterns to detect intrusions are usually generated by expert's experiences that need a lot of man-power, management expense and time. This paper proposes the statistical methods for detecting attacks without expert's experiences. The methods are to select the detection measures from features of network connections and to detect attacks. We extracted normal and each attack data from network connections, and selected the measures for detecting attacks by relative entropy. Also we made probability patterns and detected attacks by likelihood ratio. The detection rates and the false positive rates were controlled by the different threshold in the method. We used KDD CUP 99 dataset to evaluate the performance of the proposed methods.
引用
收藏
页码:340 / 348
页数:9
相关论文
共 50 条
  • [1] On the statistical distribution of processing times in network intrusion detection
    Cabrera, JBD
    Gosar, J
    Lee, W
    Mehra, RK
    2004 43RD IEEE CONFERENCE ON DECISION AND CONTROL (CDC), VOLS 1-5, 2004, : 75 - 80
  • [2] Statistical traffic modeling for network intrusion detection
    Cabrera, JBD
    Ravichandran, B
    Mehra, RK
    8TH INTERNATIONAL SYMPOSIUM ON MODELING, ANALYSIS AND SIMULATION OF COMPUTER AND TELECOMMUNICATION SYSTEMS, PROCEEDINGS, 2000, : 466 - 473
  • [3] Evolving statistical rulesets for network intrusion detection
    Rastegari, Samaneh
    Hingston, Philip
    Lam, Chiou-Peng
    APPLIED SOFT COMPUTING, 2015, 33 : 348 - 359
  • [4] Network Statistics in Function of Statistical Intrusion Detection
    Cisar, Petar
    Cisar, Sanja Maravic
    COMPUTATIONAL INTELLIGENCE IN ENGINEERING, 2010, 313 : 27 - +
  • [5] Classification Based on A Multi-Dimensional Probability Distribution and Its Application to Network Intrusion Detection
    Mabu, Shingo
    Li, Wenjing
    Lu, Nannan
    Wang, Yu
    Hirasawa, Kotara
    2010 IEEE CONGRESS ON EVOLUTIONARY COMPUTATION (CEC), 2010,
  • [6] Statistical model applied to NetFlow for network intrusion detection
    Proto A.
    Alexandre L.A.
    Batista M.L.
    Oliveira I.L.
    Cansian A.M.
    Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2010, 6480 (PART 2): : 179 - 191
  • [7] Network intrusion and fault detection: A statistical anomaly approach
    Manikopoulos, C
    Papavassiliou, S
    IEEE COMMUNICATIONS MAGAZINE, 2002, 40 (10) : 76 - 82
  • [8] A Statistical Rule Learning Approach to Network Intrusion Detection
    Rastegari, Samaneh
    Lam, Chiou-Peng
    Hingston, Philip
    2015 5TH INTERNATIONAL CONFERENCE ON IT CONVERGENCE AND SECURITY (ICITCS), 2015,
  • [9] Multivariate statistical analysis of network traffic for intrusion detection
    Kanaoka, A
    Okamoto, E
    14TH INTERNATIONAL WORKSHOP ON DATABASE AND EXPERT SYSTEMS APPLICATIONS, PROCEEDINGS, 2003, : 472 - 476
  • [10] Statistical Evaluation of Network Packets in an Intrusion Detection Mechanism Using ML and DL Techniques
    Raju, K. Srujan
    Singh, Manmohan
    Subburaj, T.
    Mahajan, Rashima
    Victoria, D. Rosy Salomi
    Ramkumar, R.
    Fahamitha, J.
    CYBERNETICS AND SYSTEMS, 2023,
12345