DocumentCode :
3283596
Title :
Clustering approach for false alerts reducing in behavioral based intrusion detection systems
Author :
Kenaza, Tayeb ; Zaidi, Abdelhalim
Author_Institution :
Dept. of Comput. Sci., Mil. Polytech. Sch., Algiers, Algeria
fYear :
2010
fDate :
3-5 Oct. 2010
Firstpage :
497
Lastpage :
499
Abstract :
Behavioral intrusion detection systems are known by their high false alerts rates. In this paper, we propose to combine a behavioral intrusion detection approach with a clustering approach in order to obtain a set of clusters with different false alerts rates. The order of these clusters with respect to their false alerts rates will be considered as an alerts prioritization. Hence, new alerts will be classified to the closest cluster and processed according to their cluster priority. Experimental results, using a simulated IDS, show that our approach is able to reduce the false alerts rate produced by behavioral intrusion detection systems.
Keywords :
pattern clustering; security of data; behavioral based intrusion detection systems; clustering approach; false alerts reduction; Classification algorithms; Clustering algorithms; Computational modeling; Data models; Intrusion detection; Training data; Behavioral intrusion detection; clustering; false alerts reducing;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Machine and Web Intelligence (ICMWI), 2010 International Conference on
Conference_Location :
Algiers
Print_ISBN :
978-1-4244-8608-3
Type :
conf
DOI :
10.1109/ICMWI.2010.5648171
Filename :
5648171
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3283596
بازگشت