A SURVEY ON THE USE OF DATA CLUSTERING FOR INTRUSION DETECTION SYSTEM IN CYBERSECURITY.

International journal of network security & its applications Pub Date : 2020-01-01 DOI:10.5121/ijnsa.2020.12101

Binita Bohara, Jay Bhuyan, Fan Wu, Junhua Ding

{"title":"A SURVEY ON THE USE OF DATA CLUSTERING FOR INTRUSION DETECTION SYSTEM IN CYBERSECURITY.","authors":"Binita Bohara, Jay Bhuyan, Fan Wu, Junhua Ding","doi":"10.5121/ijnsa.2020.12101","DOIUrl":null,"url":null,"abstract":"<p><p>In the present world, it is difficult to realize any computing application working on a standalone computing device without connecting it to the network. A large amount of data is transferred over the network from one device to another. As networking is expanding, security is becoming a major concern. Therefore, it has become important to maintain a high level of security to ensure that a safe and secure connection is established among the devices. An intrusion detection system (IDS) is therefore used to differentiate between the legitimate and illegitimate activities on the system. There are different techniques are used for detecting intrusions in the intrusion detection system. This paper presents the different clustering techniques that have been implemented by different researchers in their relevant articles. This survey was carried out on 30 papers and it presents what different datasets were used by different researchers and what evaluation metrics were used to evaluate the performance of IDS. This paper also highlights the pros and cons of each clustering technique used for IDS, which can be used as a basis for future work.</p>","PeriodicalId":93303,"journal":{"name":"International journal of network security & its applications","volume":"12 1","pages":"1-18"},"PeriodicalIF":0.0000,"publicationDate":"2020-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.5121/ijnsa.2020.12101","citationCount":"11","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International journal of network security & its applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.5121/ijnsa.2020.12101","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

Abstract

In the present world, it is difficult to realize any computing application working on a standalone computing device without connecting it to the network. A large amount of data is transferred over the network from one device to another. As networking is expanding, security is becoming a major concern. Therefore, it has become important to maintain a high level of security to ensure that a safe and secure connection is established among the devices. An intrusion detection system (IDS) is therefore used to differentiate between the legitimate and illegitimate activities on the system. There are different techniques are used for detecting intrusions in the intrusion detection system. This paper presents the different clustering techniques that have been implemented by different researchers in their relevant articles. This survey was carried out on 30 papers and it presents what different datasets were used by different researchers and what evaluation metrics were used to evaluate the performance of IDS. This paper also highlights the pros and cons of each clustering technique used for IDS, which can be used as a basis for future work.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

数据聚类技术在网络安全入侵检测系统中的应用综述。

在当今世界，如果不将计算设备连接到网络，很难实现在独立计算设备上运行的任何计算应用程序。大量的数据通过网络从一台设备传输到另一台设备。随着网络的不断扩展，安全问题日益受到关注。因此，保持高水平的安全性以确保设备之间建立安全可靠的连接变得非常重要。因此，入侵检测系统(IDS)用于区分系统上的合法和非法活动。在入侵检测系统中，有不同的技术用于检测入侵。本文介绍了不同研究人员在其相关文章中实现的不同聚类技术。这项调查是在30篇论文中进行的，它展示了不同的研究人员使用了哪些不同的数据集，以及使用了哪些评估指标来评估IDS的性能。本文还重点介绍了用于IDS的每种聚类技术的优缺点，这可以作为未来工作的基础。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

International journal of network security & its applications

自引率

0.00%

发文量