Fuzzy intrusion detection based on fuzzy reasoning Petri nets

Author

Gao, Meimei ; Zhou, MengChu

Author_Institution

Dept. of Math. & Comput. Sci., Seton Hall Univ., South Orange, NJ, USA

Volume

2

fYear

2003

fDate

5-8 Oct. 2003

Firstpage

1272

Abstract

Fuzzy rule-based technique, combining fuzzy logic and expert system methodology, not only is capable to deal with uncertainty in intrusion detection but also allows the most flexible reasoning about the widest variety of information possible. It can be used in both anomaly and misuse detections. This paper presents a method for detecting intrusion based on fuzzy rule-based technique. Fuzzy Reasoning Petri Nets (FRPN) model is used to represent fuzzy rule base and to derive the final detection decision as an inference engine. FRPN have parallel reasoning ability and are readily used into real time detection. An illustration example of TCP SYN flooding attack detection is provided.

Keywords

Petri nets; computer networks; expert systems; fuzzy logic; fuzzy set theory; inference mechanisms; real-time systems; security of data; telecommunication security; TCP SYN flooding attack detection; expert system; final detection decision; fuzzy intrusion detection; fuzzy logic; fuzzy reasoning Petri nets; fuzzy rule based technique; inference engine; parallel reasoning ability; real time detection; Engines; Expert systems; Fuzzy logic; Fuzzy neural networks; Fuzzy reasoning; Fuzzy systems; Hybrid intelligent systems; Intrusion detection; Petri nets; Uncertainty;

fLanguage

English

Publisher

ieee

Conference_Titel

Systems, Man and Cybernetics, 2003. IEEE International Conference on

ISSN

1062-922X

Print_ISBN

0-7803-7952-7

Type

conf

DOI

10.1109/ICSMC.2003.1244586

Filename

1244586