Title :
A novel framework for anomaly detection based on hybrid HMM-SVM model
Author :
Zhu, Hongliang ; Xin, Yang ; Wang, Fei
Author_Institution :
Inf. Security Center, Beijing Univ. of Posts & Telecommun., Beijing, China
Abstract :
Intrusion-detection systems (IDSs) are essential tools for the security of computer systems. Anomaly detection, which uses knowledge about normal behaviors and attempts to detect intrusions by noting significant deviations, has been paid more and more attention. In this paper, we introduce a novel framework for anomaly detection. In the proposed method, two widely used statistical learning method, Hidden Markov Model and Support Vector Machine, are introduced to detect the abnormal events. Then, we fuse the detection results by some special rules. We deploy the method on an IDS system to evaluate its performance, and the experimental results demonstrate that our method can achieve satisfying results.
Keywords :
computer network security; hidden Markov models; learning (artificial intelligence); support vector machines; anomaly detection; computer system security; hidden Markov model; hybrid HMM-SVM model; intrusion detection systems; statistical learning method; support vector machine; Accuracy; Fuses; Hidden Markov models; Support vector machines; Testing; Training; Training data; Anomaly detection; Hidden Markov Model; Support Vector Machine;
Conference_Titel :
Broadband Network and Multimedia Technology (IC-BNMT), 2011 4th IEEE International Conference on
Conference_Location :
Shenzhen
Print_ISBN :
978-1-61284-158-8
DOI :
10.1109/ICBNMT.2011.6156020
