{"title":"基于混合自编码器和决策树的入侵检测算法","authors":"Xiaoyu Du, Lv Lin, Zhijie Han, Changtao Zhang","doi":"10.1109/ICIST55546.2022.9926895","DOIUrl":null,"url":null,"abstract":"Intrusion detection can monitor network transmis-sion in real-time. It is an active security protection technology, which plays a great role in network security. In this paper, a method based on a hybrid autoencoder and decision tree is proposed to conduct intrusion detection. The autoencoder is trained through positive sample data to make its parameters fit the normal flow. The gap between normal samples and abnormal samples is distinguished by calculating the loss value, and the gap is standardized as a newly generated feature. This method can not only avoid the information loss caused by dimensionality reduction of high-dimensional data but also ensure speed and accuracy. The intrusion detection algorithm with hybrid auto encoder and decision tree obtained by the method proposed in this paper is stronger than using decision tree alone and many common machine learning methods. For example, compare the decision tree method 1.74 % better in accuracy, 2.16% better in precision, 1.47% better in recall, 1.81 % better in fscore.","PeriodicalId":211213,"journal":{"name":"2022 12th International Conference on Information Science and Technology (ICIST)","volume":"10 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An Intrusion Detection Algorithm Based on Hybrid Autoencoder and Decision Tree\",\"authors\":\"Xiaoyu Du, Lv Lin, Zhijie Han, Changtao Zhang\",\"doi\":\"10.1109/ICIST55546.2022.9926895\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Intrusion detection can monitor network transmis-sion in real-time. It is an active security protection technology, which plays a great role in network security. In this paper, a method based on a hybrid autoencoder and decision tree is proposed to conduct intrusion detection. The autoencoder is trained through positive sample data to make its parameters fit the normal flow. The gap between normal samples and abnormal samples is distinguished by calculating the loss value, and the gap is standardized as a newly generated feature. This method can not only avoid the information loss caused by dimensionality reduction of high-dimensional data but also ensure speed and accuracy. The intrusion detection algorithm with hybrid auto encoder and decision tree obtained by the method proposed in this paper is stronger than using decision tree alone and many common machine learning methods. For example, compare the decision tree method 1.74 % better in accuracy, 2.16% better in precision, 1.47% better in recall, 1.81 % better in fscore.\",\"PeriodicalId\":211213,\"journal\":{\"name\":\"2022 12th International Conference on Information Science and Technology (ICIST)\",\"volume\":\"10 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 12th International Conference on Information Science and Technology (ICIST)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICIST55546.2022.9926895\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 12th International Conference on Information Science and Technology (ICIST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICIST55546.2022.9926895","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
An Intrusion Detection Algorithm Based on Hybrid Autoencoder and Decision Tree
Intrusion detection can monitor network transmis-sion in real-time. It is an active security protection technology, which plays a great role in network security. In this paper, a method based on a hybrid autoencoder and decision tree is proposed to conduct intrusion detection. The autoencoder is trained through positive sample data to make its parameters fit the normal flow. The gap between normal samples and abnormal samples is distinguished by calculating the loss value, and the gap is standardized as a newly generated feature. This method can not only avoid the information loss caused by dimensionality reduction of high-dimensional data but also ensure speed and accuracy. The intrusion detection algorithm with hybrid auto encoder and decision tree obtained by the method proposed in this paper is stronger than using decision tree alone and many common machine learning methods. For example, compare the decision tree method 1.74 % better in accuracy, 2.16% better in precision, 1.47% better in recall, 1.81 % better in fscore.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
