• DocumentCode
    2104333
  • Title

    Data fusion detection model based on SVM and evidence theory

  • Author

    Feng Xie ; Yong Peng ; Hongyu Yang ; Haihui Gao

  • Author_Institution
    China Inf. Technol. Security Evaluation Center, Beijing, China
  • fYear
    2012
  • fDate
    9-11 Nov. 2012
  • Firstpage
    814
  • Lastpage
    818
  • Abstract
    Based on Dempster-Shafer (D-S) evidence theory of data fusion technology, a new intrusion detection system (IDS) model with C-SVM classifier is proposed. This model consisted of three SVM classifiers, which sorted out Normal, DoS, U2R, R2L and Probing behaviors from network connections according to basic TCP features, content features and traffic features. Those classified results were obtained through Dempter-Shafer´s rule of combination, consequently intrusion recognitions were implemented. The experimental result proves that our method effectively decreases the false positive rate and the false negative rate, and increases the accuracy and precision of detection.
  • Keywords
    security of data; sensor fusion; support vector machines; C-SVM classifier; Dempster-Shafer evidence theory; Dempter-Shafer rule; DoS behaviors; IDS model; Normal behaviors; Probing behaviors; R2L behaviors; TCP features; U2R behaviors; data fusion detection model; data fusion technology; intrusion detection system; intrusion recognitions; network connections; data fusion; evidence theory; intrusion detection; network connection; support vector machine;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Communication Technology (ICCT), 2012 IEEE 14th International Conference on
  • Conference_Location
    Chengdu
  • Print_ISBN
    978-1-4673-2100-6
  • Type

    conf

  • DOI
    10.1109/ICCT.2012.6511316
  • Filename
    6511316