基于SNMP MIB数据的Viterbi算法网络流量异常检测

Proceedings of the 2019 3rd International Conference on Information System and Data Mining Pub Date : 2019-04-06 DOI:10.1145/3325917.3325928

Sulaiman Alhaidari, Ali I. Alharbi, Mansour Alshaikhsaleh, M. Zohdy, D. Debnath

{"title":"基于SNMP MIB数据的Viterbi算法网络流量异常检测","authors":"Sulaiman Alhaidari, Ali I. Alharbi, Mansour Alshaikhsaleh, M. Zohdy, D. Debnath","doi":"10.1145/3325917.3325928","DOIUrl":null,"url":null,"abstract":"With the growing number of attacks and malicious threats on the Internet services and network infrastructures, the need for techniques to identify and detect attacks is increasing. One of the most critical attack for cyber security and serious security threat to Internet services in recent years is Denial of Service (DoS). Therefore, using machine learning techniques along traditional security mechanisms such as firewall and cryptography, can improve the performance of intrusion detection systems (IDSs). This research paper introduces an approach using Hidden Markov Model (HMM) based on Viterbi algorithm for detecting anomalies on SNMP MIB dataset, and compares it to two classification algorithms: Adaboost M1 and Naive Bayes algorithm. The obtained results show HMM based on Viterbi algorithm found effective and achieved great results in detecting the attacks with a high detection rate.","PeriodicalId":249061,"journal":{"name":"Proceedings of the 2019 3rd International Conference on Information System and Data Mining","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-04-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":"{\"title\":\"Network Traffic Anomaly Detection based on Viterbi Algorithm Using SNMP MIB Data\",\"authors\":\"Sulaiman Alhaidari, Ali I. Alharbi, Mansour Alshaikhsaleh, M. Zohdy, D. Debnath\",\"doi\":\"10.1145/3325917.3325928\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the growing number of attacks and malicious threats on the Internet services and network infrastructures, the need for techniques to identify and detect attacks is increasing. One of the most critical attack for cyber security and serious security threat to Internet services in recent years is Denial of Service (DoS). Therefore, using machine learning techniques along traditional security mechanisms such as firewall and cryptography, can improve the performance of intrusion detection systems (IDSs). This research paper introduces an approach using Hidden Markov Model (HMM) based on Viterbi algorithm for detecting anomalies on SNMP MIB dataset, and compares it to two classification algorithms: Adaboost M1 and Naive Bayes algorithm. The obtained results show HMM based on Viterbi algorithm found effective and achieved great results in detecting the attacks with a high detection rate.\",\"PeriodicalId\":249061,\"journal\":{\"name\":\"Proceedings of the 2019 3rd International Conference on Information System and Data Mining\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-04-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"10\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 2019 3rd International Conference on Information System and Data Mining\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3325917.3325928\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2019 3rd International Conference on Information System and Data Mining","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3325917.3325928","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 10

摘要

随着针对Internet服务和网络基础设施的攻击和恶意威胁数量的增加，对识别和检测攻击的技术的需求也在增加。拒绝服务攻击(DoS)是近年来最严重的网络安全攻击之一，也是互联网服务面临的严重安全威胁。因此，将机器学习技术与传统的安全机制(如防火墙和密码学)一起使用，可以提高入侵检测系统(ids)的性能。本文介绍了一种基于Viterbi算法的隐马尔可夫模型(HMM)用于SNMP MIB数据集异常检测的方法，并将其与Adaboost M1和朴素贝叶斯算法两种分类算法进行了比较。实验结果表明，基于Viterbi算法的HMM在检测攻击方面是有效的，取得了很好的效果，检测率很高。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Network Traffic Anomaly Detection based on Viterbi Algorithm Using SNMP MIB Data

With the growing number of attacks and malicious threats on the Internet services and network infrastructures, the need for techniques to identify and detect attacks is increasing. One of the most critical attack for cyber security and serious security threat to Internet services in recent years is Denial of Service (DoS). Therefore, using machine learning techniques along traditional security mechanisms such as firewall and cryptography, can improve the performance of intrusion detection systems (IDSs). This research paper introduces an approach using Hidden Markov Model (HMM) based on Viterbi algorithm for detecting anomalies on SNMP MIB dataset, and compares it to two classification algorithms: Adaboost M1 and Naive Bayes algorithm. The obtained results show HMM based on Viterbi algorithm found effective and achieved great results in detecting the attacks with a high detection rate.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 2019 3rd International Conference on Information System and Data Mining

自引率

0.00%

发文量