Artificial intelligence techniques applied to intrusion detection

Intrusion Detection Systems are increasingly a key part of systems defense. Various approaches to Intrusion Detection are currently being used, but they are relatively ineffective. Artificial Intelligence plays a driving role in security services. This paper proposes a dynamic model Intelligent Intr...

Full description

Saved in:
Bibliographic Details
Main Authors: Shanmugam, Bharanidhran, Idris, Norbik Bashah
Format: Book Section
Published: IEEE 2005
Subjects:
Online Access:http://eprints.utm.my/id/eprint/12400/
http://dx.doi.org/10.1109/INDCON.2005.1590122
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Universiti Teknologi Malaysia
Description
Summary:Intrusion Detection Systems are increasingly a key part of systems defense. Various approaches to Intrusion Detection are currently being used, but they are relatively ineffective. Artificial Intelligence plays a driving role in security services. This paper proposes a dynamic model Intelligent Intrusion Detection System, based on specific AI approach for intrusion detection. The techniques that are being investigated includes neural networks and fuzzy logic with network profiling, that uses simple data mining techniques to process the network data. The proposed system is a hybrid system that combines anomaly, misuse and host based detection. Simple Fuzzy rules, allow us to construct if-then rules that reflect common ways of describing security attacks. For host based intrusion detection we use neural-networks along with self organizing maps. Suspicious intrusions can be traced back to their original source path and any traffic from that particular source will be redirected back to them in future. Both network traffic and system audit data are used as inputs for both