Article

An Application of Machine Learning to Network Intrusion Detection

Authors:

Chris Sinclair,

Lyn Pierce,

Sara MatznerAuthors Info & Claims

ACSAC '99: Proceedings of the 15th Annual Computer Security Applications Conference

Page 371

Published: 06 December 1999 Publication History

Publisher Site

Abstract

Differentiating anomalous network activity from normal network traffic is difficult and tedious. A human analyst must search through vast amounts of data to find anomalous sequences of network connections. To support the analyst's job, we built an application which enhances domain knowledge with machine learning techniques to create rules for an intrusion detection expert system. We employ genetic algorithms and decision trees to automatically generate rules for classifying network connections. This paper describes the machine learning methodology and the applications employing this methodology.

Cited By

View all

Jin ZCui YYan Z(2019)Survey of Intrusion Detection Methods Based on Data Mining AlgorithmsProceedings of the 2019 International Conference on Big Data Engineering10.1145/3341620.3341632(98-106)Online publication date: 11-Jun-2019
https://dl.acm.org/doi/10.1145/3341620.3341632
Shah SIssac B(2018)Performance comparison of intrusion detection systems and application of machine learning to Snort systemFuture Generation Computer Systems10.1016/j.future.2017.10.01680:C(157-170)Online publication date: 1-Mar-2018
https://dl.acm.org/doi/10.1016/j.future.2017.10.016
De La Peña Montero FHariri SAnjum ASill AFox GChen Y(2017)Autonomic and Integrated Management for Proactive Cyber Security (AIM-PSC)Companion Proceedings of the10th International Conference on Utility and Cloud Computing10.1145/3147234.3148137(107-112)Online publication date: 5-Dec-2017
https://dl.acm.org/doi/10.1145/3147234.3148137
Show More Cited By

An Application of Machine Learning to Network Intrusion Detection
1. Computing methodologies

Recommendations

Network intrusion detection

Intrusion detection is a new, retrofit approach for providing a sense of security in existing computers and data networks, while allowing them to operate in their current "open" mode. The goal of intrusion detection is to identify unauthorized use, ...
A Wavelet Kernel-Based Support Vector Machine for Communication Network Intrusion Detection
MINES '13: Proceedings of the 2013 Fifth International Conference on Multimedia Information Networking and Security

This study is to propose a wavelet kernel-based support vector machine for communication network intrusion detection. The common intrusion types of communication network mainly include DOS, R2L, U2R and Probing. Support vector machine, BP neural network ...
Network intrusion detection: stepping-stone and masquerader detections

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

ACSAC '99: Proceedings of the 15th Annual Computer Security Applications Conference

December 1999

ISBN:0769503462

Publisher

IEEE Computer Society

United States

Publication History

Published: 06 December 1999

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

19
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 16 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Jin ZCui YYan Z(2019)Survey of Intrusion Detection Methods Based on Data Mining AlgorithmsProceedings of the 2019 International Conference on Big Data Engineering10.1145/3341620.3341632(98-106)Online publication date: 11-Jun-2019
https://dl.acm.org/doi/10.1145/3341620.3341632
Shah SIssac B(2018)Performance comparison of intrusion detection systems and application of machine learning to Snort systemFuture Generation Computer Systems10.1016/j.future.2017.10.01680:C(157-170)Online publication date: 1-Mar-2018
https://dl.acm.org/doi/10.1016/j.future.2017.10.016
De La Peña Montero FHariri SAnjum ASill AFox GChen Y(2017)Autonomic and Integrated Management for Proactive Cyber Security (AIM-PSC)Companion Proceedings of the10th International Conference on Utility and Cloud Computing10.1145/3147234.3148137(107-112)Online publication date: 5-Dec-2017
https://dl.acm.org/doi/10.1145/3147234.3148137
Aleroud AKarabatis G(2017)Contextual information fusion for intrusion detectionKnowledge and Information Systems10.1007/s10115-017-1027-352:3(563-619)Online publication date: 1-Sep-2017
https://dl.acm.org/doi/10.1007/s10115-017-1027-3
Vasudevan ASelvakumar S(2016)Local outlier factor and stronger one class classifier based hierarchical model for detection of attacks in network intrusion detection datasetFrontiers of Computer Science: Selected Publications from Chinese Universities10.1007/s11704-015-5116-810:4(755-766)Online publication date: 1-Aug-2016
https://dl.acm.org/doi/10.1007/s11704-015-5116-8
Cheikh MHacini SBoufaida Z(2014)Classification of DOS Attacks Using Visualization TechniqueInternational Journal of Information Security and Privacy10.4018/IJISP.20140401028:2(19-32)Online publication date: 1-Apr-2014
https://dl.acm.org/doi/10.4018/IJISP.2014040102
Margara ACugola GTamburrelli GBellur UKothari R(2014)Learning from the pastProceedings of the 8th ACM International Conference on Distributed Event-Based Systems10.1145/2611286.2611289(47-58)Online publication date: 26-May-2014
https://dl.acm.org/doi/10.1145/2611286.2611289
Kumaran VChakravarthy SUrban SPietzuch PRundensteiner E(2013)Event stream database based architecture to detect network intrusionProceedings of the 7th ACM international conference on Distributed event-based systems10.1145/2488222.2488276(241-248)Online publication date: 29-Jun-2013
https://dl.acm.org/doi/10.1145/2488222.2488276
Yu Y(2012)A survey of anomaly intrusion detection techniquesJournal of Computing Sciences in Colleges10.5555/2379703.237970728:1(9-17)Online publication date: 1-Oct-2012
https://dl.acm.org/doi/10.5555/2379703.2379707
Wu SBanzhaf W(2010)ReviewApplied Soft Computing10.1016/j.asoc.2009.06.01910:1(1-35)Online publication date: 1-Jan-2010
https://dl.acm.org/doi/10.1016/j.asoc.2009.06.019
Show More Cited By

Abstract

Cited By

Recommendations

Network intrusion detection

A Wavelet Kernel-Based Support Vector Machine for Communication Network Intrusion Detection

Network intrusion detection: stepping-stone and masquerader detections

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations