A Hybrid Approach for an Interpretable and Explainable Intrusion Detection System

被引：10

作者：

Dias, Tiago ^{[1
]}

Oliveira, Nuno ^{[1
]}

Sousa, Norberto ^{[1
]}

Praca, Isabel ^{[1
]}

Sousa, Orlando ^{[1
]}

机构：

[1] Porto Sch Engn ISEP, Res Grp Intelligent Engn & Comp Adv Innovat & Dev, P-4200072 Porto, Portugal

来源：

INTELLIGENT SYSTEMS DESIGN AND APPLICATIONS, ISDA 2021 | 2022年 / 418卷

关键词：

Artificial intelligence; Cybersecurity; Intrusion detection system; Explainable AI; Rule-based detection;

D O I：

10.1007/978-3-030-96308-8_96

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Cybersecurity has been a concern for quite a while now. In the latest years, cyberattacks have been increasing in size and complexity, fueled by significant advances in technology. Nowadays, there is an unavoidable necessity of protecting systems and data crucial for business continuity. Hence, many intrusion detection systems have been created in an attempt to mitigate these threats and contribute to a timelier detection. This work proposes an interpretable and explainable hybrid intrusion detection system, which makes use of artificial intelligence methods to achieve better and more long-lasting security. The system combines experts' written rules and dynamic knowledge continuously generated by a decision tree algorithm as new shreds of evidence emerge from network activity.

引用

页码：1035 / 1045

页数：11

共 22 条

[1]

Al-Debagy O, 2018, INT SYMP COMP INTELL, P149, DOI 10.1109/CINTI.2018.8928192

[2]

[Anonymous], 2013, Int. J. Comput. Appl, DOI [DOI 10.5120/13608-1412, 10.5120/13608-1412]

[3]

[Anonymous], 2012, J. Emerg. Trends Comput. Inform. Sci.

[4]

Barrett Matthew P., 2018, Framework for Improving Critical Infrastructure Cybersecurity, DOI [10.6028/NIST.CSWP.04162018, DOI 10.6028/NIST.CSWP.04162018, DOI 10.1109/JPROC.2011.2165269]

[5]

Brown S, 2020, INFOQ, P1

[6]

Cilluffo M., 2019, CYBER PHYS SECURITY

[7]

Cole E, 2002, NETWORK SECURITY BIB, V2nd

[8]

Duval A., 2019, Explainable artificial intelligence (xai), P53, DOI DOI 10.13140/RG.2.2.24722.09929

[9]

Gustavsson V., 2019, Machine learning for a network-based intrusion detection system: an application using zeek and the cicids2017 dataset

[10]

kafka, APACHE KAFKA

← 1 2 3 →