An auto-learning approach for network intrusion detection

被引:6
作者
Boulaiche, Ammar [1 ,2 ]
Adi, Kamel [2 ]
机构
[1] Univ Bejaia, Dept Comp Sci, Bejaia 06000, Algeria
[2] Univ Quebec Outaouais, Comp Secur Res Lab, Quebec City, PQ, Canada
来源
TELECOMMUNICATION SYSTEMS | 2018年 / 68卷 / 02期
关键词
Intrusion detection; Honeypots; Fuzzy hashing; DARPA'99 dataset; UNSW-NB15; dataset; LONGEST COMMON SUBSEQUENCE; SIGNATURES; GENERATION; SET;
D O I
10.1007/s11235-017-0395-z
中图分类号
TN [电子技术、通信技术];
学科分类号
0809 ;
摘要
In this paper, we propose a novel intrusion detection technique with a fully automatic attack signatures generation capability. The proposed approach exploits a honeypot traffic data analysis to build an attack scenarios database, used to detect potential intrusions. Furthermore, for an effective and efficient intrusion detection mechanism, we introduce several new or adapted algorithms for signature generation, signature comparison, etc. Finally, we use DARPA'99 and UNSW-NB15 traffic to evaluate the proposed approach. The results indicate that the generated attack signatures are of high quality with low rates of false negatives and false positives.
引用
收藏
页码:277 / 294
页数:18
相关论文
共 50 条
[41]   A Hybrid Approach for Intrusion Detection Based on Machine Learning [J].
Singh, Rohit ;
Kalra, Mala ;
Solanki, Shano .
PROCEEDINGS OF THE 2019 INTERNATIONAL CONFERENCE ON INTELLIGENT SUSTAINABLE SYSTEMS (ICISS 2019), 2019, :187-192
[42]   A Machine Learning Approach for Intrusion Detection in Smart Cities [J].
Elsaeidy, Asmaa ;
Munasinghe, Kumudu S. ;
Sharma, Dharmendra ;
Jamalipour, Abbas .
2019 IEEE 90TH VEHICULAR TECHNOLOGY CONFERENCE (VTC2019-FALL), 2019,
[43]   Network Intrusion Detection Based on Supervised Adversarial Variational Auto-Encoder With Regularization [J].
Yang, Yanqing ;
Zheng, Kangfeng ;
Wu, Bin ;
Yang, Yixian ;
Wang, Xiujuan .
IEEE ACCESS, 2020, 8 :42169-42184
[44]   Comparison of ensemble learning methods applied to network intrusion detection [J].
Belouch, Mustapha ;
El Hadaj, Salah .
PROCEEDINGS OF THE SECOND INTERNATIONAL CONFERENCE ON INTERNET OF THINGS, DATA AND CLOUD COMPUTING (ICC 2017), 2017,
[45]   A Deep Learning Model for Network Intrusion Detection with Imbalanced Data [J].
Fu, Yanfang ;
Du, Yishuai ;
Cao, Zijian ;
Li, Qiang ;
Xiang, Wei .
ELECTRONICS, 2022, 11 (06)
[46]   Deep Learning Model Transposition for Network Intrusion Detection Systems [J].
Figueiredo, Joao ;
Serrao, Carlos ;
de Almeida, Ana Maria .
ELECTRONICS, 2023, 12 (02)
[47]   Intrusion Detection on the In-Vehicle Network Using Machine Learning [J].
Sharmin, Shaila ;
Mansor, Hafizah .
2021 3RD INTERNATIONAL CYBER RESILIENCE CONFERENCE (CRC), 2021, :26-31
[48]   Using incremental learning method for adaptive network intrusion detection [J].
Yang, W ;
Yun, XC ;
Zhang, LJ .
Proceedings of 2005 International Conference on Machine Learning and Cybernetics, Vols 1-9, 2005, :3932-3936
[49]   Resource-Efficient Federated Learning for Network Intrusion Detection [J].
Doriguzzi-Corin, Roberto ;
Cretti, Silvio ;
Siracusa, Domenico .
2024 IEEE 10TH INTERNATIONAL CONFERENCE ON NETWORK SOFTWARIZATION, NETSOFT 2024, 2024, :357-362
[50]   Bayesian Network Structure Learning and Its Applications in intrusion detection [J].
Feng Zu-hong ;
Ye Chen ;
Gao Xiu-juan .
PROCEEDINGS OF THE 2015 INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND INTELLIGENT COMMUNICATION, 2015, 16 :107-112
12345