Title :
Fuzzy feature extraction and visualization for intrusion detection
Author :
Xin, Jianqiang ; Dickerson, John E. ; Dickerson, Julie A.
Author_Institution :
Electr. & Comput. Eng. Dept., Iowa State Univ., Ames, IA, USA
Abstract :
The Fuzzy Intrusion Recognition Engine (FIRE) is a network intrusion detection system that uses fuzzy systems to assess malicious activity against computer networks. A key part of an intrusion detection system is the selection of key features that can characterize the state of the network. This work uses interactive data visualization to analyze the features of several different intrusion detection scenarios using the DARPA Lincoln Labs test data. Visualizing the data helps to characterize which features are key for identifying intrusions and if they can be characterized as fuzzy sets or by Boolean variables. These inputs can then be input into a fuzzy cognitive map that serves to fuse the inputs to detect more complex attacks.
Keywords :
data visualisation; feature extraction; fuzzy logic; fuzzy systems; image recognition; local area networks; multi-agent systems; security of data; telecommunication security; Boolean variables; DARPA; Defence Advanced Research Projects Agency; FIRE; complex attacks; computer networks; data visualization; fuzzy cognitive map; fuzzy feature extraction; fuzzy intrusion recognition engine; fuzzy systems; intrusion detection; malicious activity; network state; visualization; Computer networks; Data analysis; Data visualization; Engines; Feature extraction; Fires; Fuzzy sets; Fuzzy systems; Intrusion detection; Testing;
Conference_Titel :
Fuzzy Systems, 2003. FUZZ '03. The 12th IEEE International Conference on
Print_ISBN :
0-7803-7810-5
DOI :
10.1109/FUZZ.2003.1206610
