Combining Naive-Bayesian Classifier and Genetic Clustering for Effective Anomaly Based Intrusion Detection

Network Intrusion detection systems have become unavoidable with the phenomenal rise in internet based security threats. Data mining technique based Intrusion Detection System, have the added advantage of processing large amount of data speedily. However, success rate is dependent on selecting the optimal set of features here. Given an optimal set of features and a good training data set, Bayesian classifier is known for its simplicity and high accuracy. On the other hand, clustering techniques have the flexibility to detect novel attacks even when training set is not present. Therefore, combining the results of both classification and clustering techniques can improve the performance of Intrusion Detection systems greatly. Our project aims at building flexible Intrusion Detection system by combining the advantages of Bayesian classifier and the genetic clustering algorithm. It was tested with KDD Cup 1999 dataset by supplying it with a good training set and a minimal one. In the first case, it produced excellent results, while in the second case it gave consistent performance.