Intrusion Detection with Interpretable Rules Generated Using the Tsetlin Machine

2020 IEEE Symposium Series on Computational Intelligence (SSCI) Pub Date : 2020-12-01 DOI:10.1109/SSCI47803.2020.9308206

Kuruge Darshana Abeyrathna, H. S. G. Pussewalage, S. Ranasinghe, V. Oleshchuk, Ole-Christoffer Granmo

{"title":"Intrusion Detection with Interpretable Rules Generated Using the Tsetlin Machine","authors":"Kuruge Darshana Abeyrathna, H. S. G. Pussewalage, S. Ranasinghe, V. Oleshchuk, Ole-Christoffer Granmo","doi":"10.1109/SSCI47803.2020.9308206","DOIUrl":null,"url":null,"abstract":"The rapid deployment in information and communication technologies and internet-based services have made anomaly based network intrusion detection ever so important for safeguarding systems from novel attack vectors. To this date, various machine learning mechanisms have been considered to build intrusion detection systems. However, achieving an acceptable level of classification accuracy while preserving the interpretability of the classification has always been a challenge. In this paper, we propose an efficient anomaly based intrusion detection mechanism based on the Tsetlin Machine (TM). We have evaluated the proposed mechanism over the Knowledge Discovery and Data Mining 1999 (KDD’99) dataset and the experimental results demonstrate that the proposed TM based approach is capable of achieving superior classification performance in comparison to several simple Multi-Layered Artificial Neural Networks, Support Vector Machines, Decision Trees, Random Forest, and K-Nearest Neighbor machine learning algorithms while preserving the interpretability.","PeriodicalId":413489,"journal":{"name":"2020 IEEE Symposium Series on Computational Intelligence (SSCI)","volume":"17 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE Symposium Series on Computational Intelligence (SSCI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SSCI47803.2020.9308206","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

The rapid deployment in information and communication technologies and internet-based services have made anomaly based network intrusion detection ever so important for safeguarding systems from novel attack vectors. To this date, various machine learning mechanisms have been considered to build intrusion detection systems. However, achieving an acceptable level of classification accuracy while preserving the interpretability of the classification has always been a challenge. In this paper, we propose an efficient anomaly based intrusion detection mechanism based on the Tsetlin Machine (TM). We have evaluated the proposed mechanism over the Knowledge Discovery and Data Mining 1999 (KDD’99) dataset and the experimental results demonstrate that the proposed TM based approach is capable of achieving superior classification performance in comparison to several simple Multi-Layered Artificial Neural Networks, Support Vector Machines, Decision Trees, Random Forest, and K-Nearest Neighbor machine learning algorithms while preserving the interpretability.

查看原文本刊更多论文

使用Tsetlin机器生成可解释规则的入侵检测

随着信息通信技术和互联网服务的快速发展，基于异常的网络入侵检测对于保护系统免受新型攻击媒介的侵害显得尤为重要。到目前为止，已经考虑了各种机器学习机制来构建入侵检测系统。然而，在保持分类的可解释性的同时实现可接受的分类精度水平一直是一个挑战。本文提出了一种基于Tsetlin机器(TM)的高效异常入侵检测机制。我们在知识发现和数据挖掘1999 (KDD ' 99)数据集上对所提出的机制进行了评估，实验结果表明，与几种简单的多层人工神经网络、支持向量机、决策树、随机森林和k近邻机器学习算法相比，所提出的基于TM的方法能够获得更好的分类性能，同时保持可解释性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 IEEE Symposium Series on Computational Intelligence (SSCI)

自引率

0.00%

发文量