Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming
Commonly addressed problem in intrusion detection system (IDS) research works that employed NSL-KDD dataset is to improve the rare attacks detection rate. However, some of the rare attacks are hard to be recognized by the IDS model due to their patterns are totally missing from the training set, hen...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Springer Verlag
2016
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/54525/1/Improving%20anomalous%20rare%20attack%20detection%20rate%20for%20intrusion%20detection%20system%20using%20support%20vector%20machine%20and%20genetic%20programming.pdf http://psasir.upm.edu.my/id/eprint/54525/ https://link.springer.com/article/10.1007/s11063-015-9457-y |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Putra Malaysia |
| Language: | English |
| id |
my.upm.eprints.54525 |
|---|---|
| record_format |
eprints |
| spelling |
my.upm.eprints.545252018-03-27T02:18:32Z http://psasir.upm.edu.my/id/eprint/54525/ Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran Commonly addressed problem in intrusion detection system (IDS) research works that employed NSL-KDD dataset is to improve the rare attacks detection rate. However, some of the rare attacks are hard to be recognized by the IDS model due to their patterns are totally missing from the training set, hence, reducing the rare attacks detection rate. This problem of missing rare attacks can be defined as anomalous rare attacks and hardly been solved in IDS literature. Hence, in this letter, we proposed a new classifier to improve the anomalous attacks detection rate based on support vector machine (SVM) and genetic programming (GP). Based on the experimental results, our classifier, GPSVM, managed to get higher detection rate on the anomalous rare attacks, without significant reduction on the overall accuracy. This is because, GPSVM optimization task is to ensure the accuracy is balanced between classes without reducing the generalization property of SVM. Springer Verlag 2016-10 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/54525/1/Improving%20anomalous%20rare%20attack%20detection%20rate%20for%20intrusion%20detection%20system%20using%20support%20vector%20machine%20and%20genetic%20programming.pdf Mohd Pozi, Muhammad Syafiq and Sulaiman, Md. Nasir and Mustapha, Norwati and Perumal, Thinagaran (2016) Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming. Neural Processing Letters, 44 (2). pp. 279-290. ISSN 1370-4621; ESSN: 1573-773X https://link.springer.com/article/10.1007/s11063-015-9457-y 10.1007/s11063-015-9457-y |
| institution |
Universiti Putra Malaysia |
| building |
UPM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Putra Malaysia |
| content_source |
UPM Institutional Repository |
| url_provider |
http://psasir.upm.edu.my/ |
| language |
English |
| description |
Commonly addressed problem in intrusion detection system (IDS) research works that employed NSL-KDD dataset is to improve the rare attacks detection rate. However, some of the rare attacks are hard to be recognized by the IDS model due to their patterns are totally missing from the training set, hence, reducing the rare attacks detection rate. This problem of missing rare attacks can be defined as anomalous rare attacks and hardly been solved in IDS literature. Hence, in this letter, we proposed a new classifier to improve the anomalous attacks detection rate based on support vector machine (SVM) and genetic programming (GP). Based on the experimental results, our classifier, GPSVM, managed to get higher detection rate on the anomalous rare attacks, without significant reduction on the overall accuracy. This is because, GPSVM optimization task is to ensure the accuracy is balanced between classes without reducing the generalization property of SVM. |
| format |
Article |
| author |
Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran |
| spellingShingle |
Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| author_facet |
Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran |
| author_sort |
Mohd Pozi, Muhammad Syafiq |
| title |
Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_short |
Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_full |
Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_fullStr |
Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_full_unstemmed |
Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_sort |
improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| publisher |
Springer Verlag |
| publishDate |
2016 |
| url |
http://psasir.upm.edu.my/id/eprint/54525/1/Improving%20anomalous%20rare%20attack%20detection%20rate%20for%20intrusion%20detection%20system%20using%20support%20vector%20machine%20and%20genetic%20programming.pdf http://psasir.upm.edu.my/id/eprint/54525/ https://link.springer.com/article/10.1007/s11063-015-9457-y |
| _version_ |
1643835654565527552 |