Title :
Design of Multiple-Level Hybrid Classifier for Intrusion Detection System
Author :
Xiang, C. ; Lim, S.M.
Author_Institution :
Dept. of Electr. & Comput. Eng., National Univ. of Singapore
Abstract :
As the number of networked computers grows, intrusion detection is an essential component in keeping networks secure. However, constructing and maintaining a misuse detection system is very labor-intensive since attack scenarios and patterns need to be analyzed and categorized, and the corresponding rules and patterns need to be carefully hand-coded. Thus, data mining can be used to ease this inconvenience. This paper proposes a multiple-level hybrid classifier, an intrusion detection system that uses a combination of tree classifiers and clustering algorithms to detect intrusions. Performance of this new algorithm is compared to other popular approaches such as MADAM ID and 3-level tree classifiers, and significant improvement has been achieved from the viewpoint of both high intrusion detection rate and reasonably low false alarm rate
Keywords :
computer networks; data mining; pattern classification; pattern clustering; security of data; trees (mathematics); MADAM ID; data mining; intrusion detection system; misuse detection system; multiple-level hybrid classifier; network attack patterns; network security; networked computers; pattern categorization; pattern clustering; tree classifiers; Bayesian methods; Classification tree analysis; Clustering algorithms; Computer networks; Computerized monitoring; Data mining; Decision trees; Intrusion detection; Pattern analysis; Testing;
Conference_Titel :
Machine Learning for Signal Processing, 2005 IEEE Workshop on
Conference_Location :
Mystic, CT
Print_ISBN :
0-7803-9517-4
DOI :
10.1109/MLSP.2005.1532885
