分层入侵检测方法使用naïve贝叶斯分类器

International Conference on Advances in Computing, Communications and Informatics Pub Date : 2012-08-03 DOI:10.1145/2345396.2345500

Neelam Sharma, S. Mukherjee

{"title":"分层入侵检测方法使用naïve贝叶斯分类器","authors":"Neelam Sharma, S. Mukherjee","doi":"10.1145/2345396.2345500","DOIUrl":null,"url":null,"abstract":"Intrusion detection is the process of monitoring and analyzing the events occurring in a computer system in order to detect signs of security problems. In real world environment, the minority intrusion attacks namely R2L and U2R/Data attacks are more dangerous than the majority attacks like Probe and DoS. The present day standalone intrusion detection systems are not effective in detecting the minority attacks. Hence, it is essential to improve the detection performance for the minority intrusions, while maintaining a reasonable overall detection rate. In this paper we propose layered approach for improving the minority attack detection rate without hurting the prediction performance of the majority attacks. The proposed model used Naive Bayes classifier on reduced dataset for each attack class. In this system every layer is separately trained to detect a single type of attack category.","PeriodicalId":290400,"journal":{"name":"International Conference on Advances in Computing, Communications and Informatics","volume":"49 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-08-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"30","resultStr":"{\"title\":\"Layered approach for intrusion detection using naïve Bayes classifier\",\"authors\":\"Neelam Sharma, S. Mukherjee\",\"doi\":\"10.1145/2345396.2345500\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Intrusion detection is the process of monitoring and analyzing the events occurring in a computer system in order to detect signs of security problems. In real world environment, the minority intrusion attacks namely R2L and U2R/Data attacks are more dangerous than the majority attacks like Probe and DoS. The present day standalone intrusion detection systems are not effective in detecting the minority attacks. Hence, it is essential to improve the detection performance for the minority intrusions, while maintaining a reasonable overall detection rate. In this paper we propose layered approach for improving the minority attack detection rate without hurting the prediction performance of the majority attacks. The proposed model used Naive Bayes classifier on reduced dataset for each attack class. In this system every layer is separately trained to detect a single type of attack category.\",\"PeriodicalId\":290400,\"journal\":{\"name\":\"International Conference on Advances in Computing, Communications and Informatics\",\"volume\":\"49 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-08-03\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"30\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Conference on Advances in Computing, Communications and Informatics\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/2345396.2345500\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Advances in Computing, Communications and Informatics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2345396.2345500","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 30

摘要

入侵检测是监视和分析计算机系统中发生的事件，以发现安全问题迹象的过程。在现实环境中，少数入侵攻击即R2L和U2R/Data攻击比大多数攻击如Probe和DoS更危险。现有的独立入侵检测系统在检测少数派攻击方面效果不佳。因此，在保持合理的整体检测率的同时，提高对少数入侵的检测性能至关重要。本文提出了在不影响多数攻击预测性能的前提下，提高少数攻击检测率的分层方法。该模型采用朴素贝叶斯分类器对每个攻击类进行约简处理。在这个系统中，每一层都被单独训练以检测单一类型的攻击类别。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Layered approach for intrusion detection using naïve Bayes classifier

Intrusion detection is the process of monitoring and analyzing the events occurring in a computer system in order to detect signs of security problems. In real world environment, the minority intrusion attacks namely R2L and U2R/Data attacks are more dangerous than the majority attacks like Probe and DoS. The present day standalone intrusion detection systems are not effective in detecting the minority attacks. Hence, it is essential to improve the detection performance for the minority intrusions, while maintaining a reasonable overall detection rate. In this paper we propose layered approach for improving the minority attack detection rate without hurting the prediction performance of the majority attacks. The proposed model used Naive Bayes classifier on reduced dataset for each attack class. In this system every layer is separately trained to detect a single type of attack category.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International Conference on Advances in Computing, Communications and Informatics

自引率

0.00%

发文量