Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system
Intrusion Detection Systems (IDS) is special software developed in order to protect the system against security threats and malware. IDS provides second line of defense after rule based firewall. Unfortunately IDS with supervised learning approach heavily rely on labeled training data and generally...
Saved in:
| Main Author: | |
|---|---|
| Format: | Thesis |
| Language: | English |
| Published: |
2013
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/33102/5/AhmedAAAbunadaMFSKSM2013.pdf http://eprints.utm.my/id/eprint/33102/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Teknologi Malaysia |
| Language: | English |
| id |
my.utm.33102 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.331022017-07-24T07:46:42Z http://eprints.utm.my/id/eprint/33102/ Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system Abunada, Ahmed A. A. QA75 Electronic computers. Computer science Intrusion Detection Systems (IDS) is special software developed in order to protect the system against security threats and malware. IDS provides second line of defense after rule based firewall. Unfortunately IDS with supervised learning approach heavily rely on labeled training data and generally it fails to detect novel attacks and produces high false alarm. Besides, data labeling is expensive and time consuming. However, a systematic method which offers the capability to alleviate this problem is through the use of unsupervised approaches, which is the basis for this research. In addition to that, to investigate this phenomenon, a comparison between two clustering algorithms based on an anomaly detection system IDS is proposed. Related literature has given a direction towards comparing two clustering algorithm which are Artificial Immune Network (AIN) and Fuzzy c-means (FCM). The performance of those two clustering algorithm were measured based on false positive rate, false negative rate, hit rate and detection. This study has evaluated and analyzed AIN and FCM clustering algorithms. The finding shows that AIN gives higher overall accuracy and hit rate. It also gives lower false alarms on both datasets used in the study. Consistent good performances of AIN in clustering network traffic data into respective classes has made AIN a promising clustering technique to be of used in detection novel attack traffic in IDS. 2013-01 Thesis NonPeerReviewed application/pdf en http://eprints.utm.my/id/eprint/33102/5/AhmedAAAbunadaMFSKSM2013.pdf Abunada, Ahmed A. A. (2013) Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system. Masters thesis, Universiti Teknologi Malaysia, Faculty of Computing. |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| language |
English |
| topic |
QA75 Electronic computers. Computer science |
| spellingShingle |
QA75 Electronic computers. Computer science Abunada, Ahmed A. A. Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system |
| description |
Intrusion Detection Systems (IDS) is special software developed in order to protect the system against security threats and malware. IDS provides second line of defense after rule based firewall. Unfortunately IDS with supervised learning approach heavily rely on labeled training data and generally it fails to detect novel attacks and produces high false alarm. Besides, data labeling is expensive and time consuming. However, a systematic method which offers the capability to alleviate this problem is through the use of unsupervised approaches, which is the basis for this research. In addition to that, to investigate this phenomenon, a comparison between two clustering algorithms based on an anomaly detection system IDS is proposed. Related literature has given a direction towards comparing two clustering algorithm which are Artificial Immune Network (AIN) and Fuzzy c-means (FCM). The performance of those two clustering algorithm were measured based on false positive rate, false negative rate, hit rate and detection. This study has evaluated and analyzed AIN and FCM clustering algorithms. The finding shows that AIN gives higher overall accuracy and hit rate. It also gives lower false alarms on both datasets used in the study. Consistent good performances of AIN in clustering network traffic data into respective classes has made AIN a promising clustering technique to be of used in detection novel attack traffic in IDS. |
| format |
Thesis |
| author |
Abunada, Ahmed A. A. |
| author_facet |
Abunada, Ahmed A. A. |
| author_sort |
Abunada, Ahmed A. A. |
| title |
Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system |
| title_short |
Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system |
| title_full |
Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system |
| title_fullStr |
Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system |
| title_full_unstemmed |
Comparative study between fuzzy C-Means algorithm and artificial immune network algorithm in intrusion detection system |
| title_sort |
comparative study between fuzzy c-means algorithm and artificial immune network algorithm in intrusion detection system |
| publishDate |
2013 |
| url |
http://eprints.utm.my/id/eprint/33102/5/AhmedAAAbunadaMFSKSM2013.pdf http://eprints.utm.my/id/eprint/33102/ |
| _version_ |
1643649231030845440 |