• DocumentCode
    2490058
  • Title

    ANNIDS: intrusion detection system based on artificial neural network

  • Author

    Liu, Yan-heng ; Tian, Da-xin ; Wang, Ai-min

  • Author_Institution
    Coll. of Comput. Sci. & Technol., Jilin Univ., China
  • Volume
    3
  • fYear
    2003
  • fDate
    2-5 Nov. 2003
  • Firstpage
    1337
  • Abstract
    This paper describes a network intrusion detection system based on artificial neural network (ANNIDS). The advantage of neural network ensures that ANNIDS does not need expert knowledge and it can find unknown or novel intrusions. The key part of ANNIDS is an adaptive resonance theory neural network (ART). ANNIDS can be trained in real-time and in an unsupervised way. A weight hamming distance method is used in detection, which is simple and correct in finding anomalous behavior. A well-trained ANNIDS can monitor the network in real time. The experimental results show that ANNIDS performs best when vigilance parameter is 0.4 to 0.5 and intrusion threshold is 0.4. The false positive error is about 8%, the negative error is about 2%, and the total error is lower 10%.
  • Keywords
    ART neural nets; learning (artificial intelligence); monitoring; security of data; transport protocols; ANNIDS; TCP/IP protocol; adaptive resonance theory neural network; artificial neural network; network intrusion detection system; network monitoring; packet hamming distance; weight hamming distance method; Artificial neural networks; Computer errors; Computer networks; Computer science; Data mining; Educational institutions; Hamming distance; Immune system; Intrusion detection; Monitoring;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Machine Learning and Cybernetics, 2003 International Conference on
  • Print_ISBN
    0-7803-8131-9
  • Type

    conf

  • DOI
    10.1109/ICMLC.2003.1259699
  • Filename
    1259699
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2490058