A novel intrusion detection system based on hierarchical clustering and support vector machines

被引：263

作者：

Horng, Shi-Jinn ^{[1
,3
]}

Su, Ming-Yang ^{[4
]}

Chen, Yuan-Hsin ^{[3
]}

Kao, Tzong-Wann ^{[2
]}

Chen, Rong-Jian ^{[3
]}

Lai, Jui-Lin ^{[3
]}

Perkasa, Citra Dwi ^{[1
]}

机构：

[1] Natl Taiwan Univ Sci & Technol, Dept Comp Sci & Informat Engn, Taipei 106, Taiwan

[2] No Taiwan Inst Sci & Technol, Dept Elect Engn, Taipei, Taiwan

[3] Natl United Univ, Dept Elect Engn, Miaoli, Taiwan

[4] Ming Chuan Univ, Dept Comp Sci & Informat Engn, Tao Yuan, Taiwan

来源：

EXPERT SYSTEMS WITH APPLICATIONS | 2011年 / 38卷 / 01期

关键词：

Network intrusion detection system (NIDS); Support vector machines (SVMs); Hierarchical clustering algorithm; KDD Cup 1999; Network security; Data mining;

D O I：

10.1016/j.eswa.2010.06.066

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

This study proposed an SVM-based intrusion detection system, which combines a hierarchical clustering algorithm, a simple feature selection procedure, and the SVM technique. The hierarchical clustering algorithm provided the SVM with fewer, abstracted, and higher-qualified training instances that are derived from the KDD Cup 1999 training set. It was able to greatly shorten the training time, but also improve the performance of resultant SVM. The simple feature selection procedure was applied to eliminate unimportant features from the training set so the obtained SVM model could classify the network traffic data more accurately. The famous KDD Cup 1999 dataset was used to evaluate the proposed system. Compared with other intrusion detection systems that are based on the same dataset, this system showed better performance in the detection of DoS and Probe attacks, and the beset performance in overall accuracy. (c) 2010 Elsevier Ltd. All rights reserved.

引用

页码：306 / 313

页数：8

共 50 条

[1] A new intrusion detection system using support vector machines and hierarchical clustering
Latifur Khan
Mamoun Awad
Bhavani Thuraisingham
The VLDB Journal, 2007, 16 : 507 - 521
[2] A new intrusion detection system using support vector machines and hierarchical clustering
Khan, Latifur
Awad, Mamoun
Thuraisingham, Bhavani
VLDB JOURNAL, 2007, 16 (04): : 507 - 521
[3] Intrusion detection Based on Fuzzy support vector machines
Du Hongle
Teng Shaohua
Zhu Qingfang
NSWCTC 2009: INTERNATIONAL CONFERENCE ON NETWORKS SECURITY, WIRELESS COMMUNICATIONS AND TRUSTED COMPUTING, VOL 2, PROCEEDINGS, 2009, : 639 - +
[4] Windows-hosted intrusion detection system based on support vector machines
Zhang, Xue-Qin
Gu, Chun-Hua
Lin, Jia-Jun
Huadong Ligong Daxue Xuebao /Journal of East China University of Science and Technology, 2006, 32 (03): : 341 - 345
[5] Research on Intrusion Detection System Based on Clustering Fuzzy Support Vector Machine
Zhai Jinbiao
INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2014, 8 (03): : 249 - 260
[6] Face detection based on hierarchical support vector machines
2005, Shanghai Computer Society, Shanghai, China (31):
[7] Face detection based on hierarchical Support Vector Machines
Ma, Y
Ding, XQ
16TH INTERNATIONAL CONFERENCE ON PATTERN RECOGNITION, VOL I, PROCEEDINGS, 2002, : 222 - 225
[8] Network-based intrusion detection with support vector machines
Kim, DS
Park, JS
INFORMATION NETWORKING: NETWORKING TECHNOLOGIES FOR ENHANCED INTERNET SERVICES, 2003, 2662 : 747 - 756
[9] Hierarchical Core Vector Machines for Network Intrusion Detection
Chen, Ye
Pang, Shaoning
Kasabov, Nikola
Ban, Tao
Kadobayashi, Youki
NEURAL INFORMATION PROCESSING, PT 2, PROCEEDINGS, 2009, 5864 : 520 - +
[10] Features Selection for Intrusion Detection Systems Based on Support Vector Machines
Zaman, Safaa
Karray, Fakhri
2009 6TH IEEE CONSUMER COMMUNICATIONS AND NETWORKING CONFERENCE, VOLS 1 AND 2, 2009, : 1066 - 1073

← 1 2 3 4 5 →