A Hybrid Model of RST and DST with its Application in Intrusion Detection

Author

Qing Ye ; Xiaoping Wu ; Yongqing Liu ; Gaofeng Huang

Author_Institution

Depart. of Inf. Security, Naval Univ. of Eng., Wuhan, China

fYear

2010

fDate

2-4 April 2010

Firstpage

202

Lastpage

205

Abstract

Intrusion Detection system has become the main research focus in the area of information security. Dempster-Shafer theory of Evidence (DST) and rough set theory (RST) are two typically effective tools in dealing with uncertainty questions including network intrusion detection. In this paper, to solve some problems in applying DST, a hybrid approach of RST and DST is proposed. Firstly, to obtain basic probability assignment (BPA) of evidence theory for all evidences, a novel method of getting evidences and objective BPA based on attribute importance is presented. The attribute simplification algorithm is established to eliminate redundant evidences and establish the final combined evidences. A hybrid model for intrusion detection based on RST and DST is presented to give a higher detection precision and better performance, and in an illustrative example it is effective and feasible.

Keywords

probability; rough set theory; security of data; DST; Dempster-Shafer theory of Evidence; RST; basic probability assignment; hybrid model; information security; intrusion detection; rough set theory; Computer security; Data security; Encoding; Fault diagnosis; Frequency; Information security; Internet; Intrusion detection; Set theory; Uncertainty; Dempster-Shafer theory of evidence; computer security; intrusion detection; rough set theory;

fLanguage

English

Publisher

ieee

Conference_Titel

Intelligent Information Technology and Security Informatics (IITSI), 2010 Third International Symposium on

Conference_Location

Jinggangshan

Print_ISBN

978-1-4244-6730-3

Electronic_ISBN

978-1-4244-6743-3

Type

conf

DOI

10.1109/IITSI.2010.87

Filename

5453563