• DocumentCode
    3600168
  • Title

    Intrusion detection using principal component analysis

  • Author

    Mechtri, Leila ; Tolba, Fatiha Djemili ; Ghoualmi, Nacira

  • Author_Institution
    Fac. Sci. de l´´Ing., Dept. d´´Inf., Univ. Badji-Mokhtar Annaba, Annaba-Algérie, France
  • fYear
    2010
  • Firstpage
    1
  • Lastpage
    6
  • Abstract
    Nowadays Intrusion detection systems (IDS) are very important for every information technology company which is concerned with security and sensitive systems. Even if a lot of research was already done on this topic, the perfect IDS has still not been found and it stays a hot and challenging area in computer security research. This paper presents a simple and robust method for intrusion detection in computer networks based on principal component analysis (PCA) where each network connection is transformed into an input data vector. PCA is then employed to reduce the high dimensional data vectors and thus, detection is handled in a low dimensional space with high efficiency and low use of system resources. Our experiments with the KDD Cup 99 dataset, although not yet completed, have shown that this approach is promising in terms of detection accuracy. It is also effective to identify most known attacks as well as new attacks. However, a frequent update for both user profiles and attacks databases is crucial to improve the identification rates.
  • Keywords
    computer network security; principal component analysis; KDD Cup 99 dataset; computer networks; data vectors; information technology company; intrusion detection systems; misuse detection; principal component analysis; security systems; sensitive systems; Computer networks; Computer security; Data security; Databases; Information security; Information technology; Intrusion detection; Principal component analysis; Robustness; US Government; Anomaly Detection; Intrusion Detection; Misuse Detection; Principal Component Analysis; User Behavior;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Engineering Systems Management and Its Applications (ICESMA), 2010 Second International Conference on
  • Print_ISBN
    978-1-4244-6520-0
  • Electronic_ISBN
    978-9948-427-14-8
  • Type

    conf

  • Filename
    5542663