Title :
Detection of Low Intensity DoS Attacks using Fuzzy Based Intrusion Detection System
Author :
Baig, Habibullah ; Kamran, Farrukh
Author_Institution :
Center for Adv. Studies in Eng., Islamabad
Abstract :
Detecting low intensity denial of service (DoS) attacks in minimum time with less false positives is challenging for network based intrusion detection systems. In this paper we propose a new fuzzy logic based approach, which adapts fuzzy linguistic membership functions instead of modifying the fuzzy rules. The authors use the normal TCP profile, i.e. the `connected-sessions´, to guide the fuzzy membership set boundaries. The authors also propose implementation architecture with a hierarchy of fuzzy agents responsible for detecting different types of attacks. This scheme reduces the number of false alarms at lower level of hierarchy. Tests have been conducted and are reported using DARPA98 datasets
Keywords :
fuzzy logic; security of data; denial of service; fuzzy agents; fuzzy linguistic membership; fuzzy logic; fuzzy rules; intrusion detection systems; Change detection algorithms; Computer crime; Data mining; Fuzzy logic; Fuzzy systems; Intrusion detection; Probability; Random variables; Telecommunication traffic; Traffic control;
Conference_Titel :
Electrical and Computer Engineering, 2006. ICECE '06. International Conference on
Conference_Location :
Dhaka
Print_ISBN :
98432-3814-1
DOI :
10.1109/ICECE.2006.355700
