Distance-based Classification using Average Matching Degree and its Application to Intrusion Detection Systems
-
- Lu Nannan
- Graduate School of information, Production and Systems, Waseda University
-
- Mabu Shingo
- Graduate School of information, Production and Systems, Waseda University
-
- Wang Tuo
- Graduate School of information, Production and Systems, Waseda University
-
- Hirasawa Kotaro
- Graduate School of information, Production and Systems, Waseda University
この論文をさがす
抄録
Network security becomes an extraordinary important issue since various attacks are launched frequently with increased usage of computers and networks in many fields. Therefore, many techniques for intrusion detection have been studied in order to build a secure Internet atmosphere. One of them, that is, the rule-based classification methods usually rank the rules in order of precedence to build the classifier for different classes. When a new data comes and matches with rules, the most confident rule is usually used for the class label of the data. However, simply matching with the most confidence rule leads to lower classification accuracy. In addition, the domain knowledge should be clear and its explicit analysis is necessary in such methods. Therefore, in this paper, the average matching degree is calculated by matching data with rules, i.e., normal rules and misuse intrusion rules in a two dimensional space in order to form more realistic classification model. In this paper, a rule-based classification method using the average matching degree and distance concept has been proposed for classifying unknown network connections into normal, misuse intrusion or anomaly intrusion, where the model uses the distance between a data and rules in the average matching degree space. The benchmark data KDD Cup 1999 and NSL-KDD are used to evaluate the performance of the proposed method.
収録刊行物
-
- 電気学会論文誌C(電子・情報・システム部門誌)
-
電気学会論文誌C(電子・情報・システム部門誌) 132 (12), 2033-2042, 2012
一般社団法人 電気学会
- Tweet
詳細情報 詳細情報について
-
- CRID
- 1390001204608468096
-
- NII論文ID
- 10031129680
-
- NII書誌ID
- AN10065950
-
- ISSN
- 13488155
- 03854221
-
- NDL書誌ID
- 024253837
-
- 本文言語コード
- en
-
- データソース種別
-
- JaLC
- NDL
- Crossref
- CiNii Articles
-
- 抄録ライセンスフラグ
- 使用不可