Performance improvement of intrusion detection with fusion of multiple sensors

被引:13
|
作者
Shah, Vrushank [1 ]
Aggarwal, Akshai K. [2 ]
Chaubey, Nirbhay [3 ]
机构
[1] 21-246 Parasnagar 2, Solaroad, Ahmadabad, Gujarat, India
[2] Gujarat Technol Univ, Ahmadabad, Gujarat, India
[3] S S Agarwal Inst Comp Sci, Navsari, Gujarat, India
来源
COMPLEX & INTELLIGENT SYSTEMS | 2017年 / 3卷 / 01期
关键词
Intrusion; KDD99; Fusion; Evidence theory; False alarm rate;
D O I
10.1007/s40747-016-0033-5
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Intrusion detection has become a challenging task with the rapid growth in numbers of computer users. The present-day technology requires an efficient method to detect intrusion in the computer network system. Intrusion detection system is a classifier which collects evidences for the presence of intrusion and raises an alarm for any abnormalities present. However, the use of intrusion detection system encounters two major drawbacks: higher false alarm rate and lower detection rate; these limit the detection performance of intrusion detection system. A prospective approach for improving performance is through the use of multiple sensors/intrusion detection system. Evidence theory is a mathematical theory of evidence which is used to fuse evidences from multiple sources of evidence and outputs a global decision. The work in this paper discusses the limitations and issues with evidence theory and proposes a modified framework for fusion of alarms of multiple intrusion detection systems.
引用
收藏
页码:33 / 39
页数:7
相关论文
共 50 条
  • [1] Performance improvement of intrusion detection with fusion of multiple sensorsAn evidence-theory-based approach
    Vrushank Shah
    Akshai K. Aggarwal
    Nirbhay Chaubey
    [J]. Complex & Intelligent Systems, 2017, 3 : 33 - 39
  • [2] Detection of intrusion across multiple sensors
    Long, W
    Doyle, J
    Burke, G
    Szolovits, P
    [J]. SYSTEM DIAGNOSIS AND PROGNOSIS: SECURITY AND CONDITION MONITORING ISSUES III, 2003, 5107 : 141 - 149
  • [3] Improvement in Intrusion Detection With Advances in Sensor Fusion
    Thomas, Ciza
    Balakrishnan, N.
    [J]. IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2009, 4 (03) : 542 - 551
  • [4] Characterizing the performance of network intrusion detection sensors
    Schaelicke, L
    Slabach, T
    Moore, B
    Freeland, C
    [J]. RECENT ADVANCES IN INTRUSION DETECTION, PROCEEDINGS, 2003, 2820 : 155 - 172
  • [5] Fusion of multiple classifiers for intrusion detection in computer networks
    Giacinto, G
    Roli, F
    Didaci, L
    [J]. PATTERN RECOGNITION LETTERS, 2003, 24 (12) : 1795 - 1803
  • [6] A high performance platform for Network Intrusion Detection sensors
    Biswas, A
    Sinha, P
    [J]. PROCEEDINGS OF THE FOURTH IASTED INTERNATIONAL CONFERENCE ON COMMUNICATIONS, INTERNET, AND INFORMATION TECHNOLOGY, 2005, : 32 - 38
  • [7] Improvement of SNM Detection Performance by Fusion of Data From Multiple Inspection Systems
    Shaw, T. J.
    Strellis, Dan A.
    Keeley, Doug
    Yee, Ryan
    Gozani, Tsahi
    [J]. IEEE TRANSACTIONS ON NUCLEAR SCIENCE, 2009, 56 (03) : 939 - 943
  • [8] Performance Improvement of Deep Packet Inspection for Intrusion Detection
    Parvat, Thaksen J.
    Chandra, Pravin
    [J]. 2014 IEEE GLOBAL CONFERENCE ON WIRELESS COMPUTING AND NETWORKING (GCWCN), 2014, : 224 - 228
  • [9] Intrusion detection using multiple classifiers fusion and clustering analysis
    Zhong, Cheng
    Mi, Aizhong
    Yang, Feng
    [J]. PROCEEDINGS OF THE INTERNATIONAL CONFERENCE INFORMATION COMPUTING AND AUTOMATION, VOLS 1-3, 2008, : 1181 - 1183
  • [10] A new multiple decisions fusion rule for targets detection in multiple sensors distributed detection systems with data fusion
    Aziz, Ashraf M.
    [J]. INFORMATION FUSION, 2014, 18 : 175 - 186
12345