Title :
A novel framework for network intrusion detection using learning techniques
Author_Institution :
Dept. of Electr. & Comput. Eng., Victoria Univ., BC, Canada
Abstract :
We propose in this paper a novel network intrusion detection framework based on learning techniques. The main goal of our framework is to detect known as well as unknown or novel attacks on networks. Our detection approach combines three learning techniques, namely inductive logic programming (ILP), genetic programming (GP) and Bayesian probability theorem. Each technique detects the intrusion independently and then makes a decision about whether the network behavior is intrusive or normal. A voting mechanism is proposed to give the final intrusion decision. In theory, our framework has lower false alarm rate than other approaches since we use the voting mechanism and combine several detection techniques.
Keywords :
Bayes methods; computer networks; genetic algorithms; inductive logic programming; probability; security of data; telecommunication security; Bayesian probability theorem; genetic programming; inductive logic programming; learning techniques; network intrusion detection; Intrusion detection;
Conference_Titel :
Communications, Computers and signal Processing, 2005. PACRIM. 2005 IEEE Pacific Rim Conference on
Print_ISBN :
0-7803-9195-0
DOI :
10.1109/PACRIM.2005.1517325