Hybrid Approach for Intrusion Detection System

2018 International Conference on Current Trends towards Converging Technologies (ICCTCT) Pub Date : 2018-03-01 DOI:10.1109/ICCTCT.2018.8551181

P. Singh, M. Venkatesan

{"title":"Hybrid Approach for Intrusion Detection System","authors":"P. Singh, M. Venkatesan","doi":"10.1109/ICCTCT.2018.8551181","DOIUrl":null,"url":null,"abstract":"In the recent research, Intrusion Detection sys- tem in Machine Learning has been giving good detection and high accuracy on novel attacks. The major purpose of this study is implementing a method that combines Random-Forest classification technique and K-Means clustering Algorithms. In misuse-detection, random-forest algorithm will build a patterns of intrusion over a training data. And in anomaly-detection, intrusions will be identified by the outlier-detection mechanism in the random-forest algorithm. This hybrid-detection system will combine the advantage of anomaly and mis-use detection and improves the performance of detection. This paper mainly focused on evaluating the performance of hybrid approaches namely Gaussian Mixture clustering with Random Forest Classifiers and K-Means clustering with Random Forest Classifiers in-order to detect intrusion. These algorithms were evaluated for the four categories of attacks based on accuracy, false-alarm-rate, and detection-rate. From our experiments conducted, K-Means clustering with Random Forest Classifiers outperformed over the Gaussian Mixture clustering with Random Forest Classifiers.","PeriodicalId":344188,"journal":{"name":"2018 International Conference on Current Trends towards Converging Technologies (ICCTCT)","volume":"10 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-03-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 International Conference on Current Trends towards Converging Technologies (ICCTCT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCTCT.2018.8551181","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 10

Abstract

In the recent research, Intrusion Detection sys- tem in Machine Learning has been giving good detection and high accuracy on novel attacks. The major purpose of this study is implementing a method that combines Random-Forest classification technique and K-Means clustering Algorithms. In misuse-detection, random-forest algorithm will build a patterns of intrusion over a training data. And in anomaly-detection, intrusions will be identified by the outlier-detection mechanism in the random-forest algorithm. This hybrid-detection system will combine the advantage of anomaly and mis-use detection and improves the performance of detection. This paper mainly focused on evaluating the performance of hybrid approaches namely Gaussian Mixture clustering with Random Forest Classifiers and K-Means clustering with Random Forest Classifiers in-order to detect intrusion. These algorithms were evaluated for the four categories of attacks based on accuracy, false-alarm-rate, and detection-rate. From our experiments conducted, K-Means clustering with Random Forest Classifiers outperformed over the Gaussian Mixture clustering with Random Forest Classifiers.

查看原文本刊更多论文

入侵检测系统的混合方法

在最近的研究中，基于机器学习的入侵检测系统对新型攻击具有良好的检测效果和较高的准确率。本研究的主要目的是实现一种结合随机森林分类技术和k均值聚类算法的方法。在误用检测中，随机森林算法将在训练数据上建立入侵模式。在异常检测中，入侵将通过随机森林算法中的异常点检测机制进行识别。该混合检测系统结合了异常检测和误用检测的优点，提高了检测性能。本文主要对随机森林分类器高斯混合聚类和随机森林分类器k均值聚类这两种混合方法在入侵检测中的性能进行了评价。基于准确率、误报率和检测率，对这些算法进行了四类攻击的评估。从我们进行的实验来看，随机森林分类器的K-Means聚类优于随机森林分类器的高斯混合聚类。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 International Conference on Current Trends towards Converging Technologies (ICCTCT)

自引率

0.00%

发文量