{"title":"高级入侵检测系统的性能评估","authors":"Kiran Bala .","doi":"10.15623/ijret.2018.0710003","DOIUrl":null,"url":null,"abstract":"_______________________________________________________________________________________ Abstract An intrusion detection system (IDS) plays an important role in securing our computer networks. There are many techniques designed to help in detecting and preventing such attacks. Intrusion detection system (IDS) is used to observe unwanted action on network systems and individual computers. However due to the opposite effect of using IDS, using individual methods of IDS only misuse or anomaly attacks can be detected. This paper proposed a model that integrates both approaches signature and anomaly based on IDS to reduce obtained alerts and detects new attacks. False alert rate, area under ROC curve, accuracy, recall, F-score, and P-test are the parameters used to evaluate the effectiveness of hybrid IDS. This paper also considers KDD Cup 1999 information set keeping in mind the end goal to show the profits of the proposed intrusion detection system described in the KDD Cup record previously.","PeriodicalId":14258,"journal":{"name":"International Journal of Research in Engineering and Technology","volume":"177 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"PERFORMANCE EVALUATION OF ADVANCED INTRUSION DETECTION SYSTEM\",\"authors\":\"Kiran Bala .\",\"doi\":\"10.15623/ijret.2018.0710003\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"_______________________________________________________________________________________ Abstract An intrusion detection system (IDS) plays an important role in securing our computer networks. There are many techniques designed to help in detecting and preventing such attacks. Intrusion detection system (IDS) is used to observe unwanted action on network systems and individual computers. However due to the opposite effect of using IDS, using individual methods of IDS only misuse or anomaly attacks can be detected. This paper proposed a model that integrates both approaches signature and anomaly based on IDS to reduce obtained alerts and detects new attacks. False alert rate, area under ROC curve, accuracy, recall, F-score, and P-test are the parameters used to evaluate the effectiveness of hybrid IDS. This paper also considers KDD Cup 1999 information set keeping in mind the end goal to show the profits of the proposed intrusion detection system described in the KDD Cup record previously.\",\"PeriodicalId\":14258,\"journal\":{\"name\":\"International Journal of Research in Engineering and Technology\",\"volume\":\"177 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-10-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Journal of Research in Engineering and Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.15623/ijret.2018.0710003\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Research in Engineering and Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.15623/ijret.2018.0710003","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
_______________________________________________________________________________________ 抽象的入侵检测系统(IDS)中扮演一个重要的角色在确保我们的计算机网络。有许多技术旨在帮助检测和防止此类攻击。入侵检测系统(IDS)用于观察网络系统和个人计算机上的不良行为。然而,由于使用IDS的相反效果,使用IDS的单个方法只能检测到误用或异常攻击。本文提出了一种基于入侵检测的特征和异常相结合的模型,以减少已获得的警报并检测新的攻击。假警报率、ROC曲线下面积、准确率、召回率、f得分和p检验是评价混合IDS有效性的参数。本文还考虑了KDD Cup 1999信息集,并考虑了最终目标,以显示先前KDD Cup记录中所描述的入侵检测系统的收益。
PERFORMANCE EVALUATION OF ADVANCED INTRUSION DETECTION SYSTEM
_______________________________________________________________________________________ Abstract An intrusion detection system (IDS) plays an important role in securing our computer networks. There are many techniques designed to help in detecting and preventing such attacks. Intrusion detection system (IDS) is used to observe unwanted action on network systems and individual computers. However due to the opposite effect of using IDS, using individual methods of IDS only misuse or anomaly attacks can be detected. This paper proposed a model that integrates both approaches signature and anomaly based on IDS to reduce obtained alerts and detects new attacks. False alert rate, area under ROC curve, accuracy, recall, F-score, and P-test are the parameters used to evaluate the effectiveness of hybrid IDS. This paper also considers KDD Cup 1999 information set keeping in mind the end goal to show the profits of the proposed intrusion detection system described in the KDD Cup record previously.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
