Title :
ANNIDS: intrusion detection system based on artificial neural network
Author :
Liu, Yan-heng ; Tian, Da-xin ; Wang, Ai-min
Author_Institution :
Coll. of Comput. Sci. & Technol., Jilin Univ., China
Abstract :
This paper describes a network intrusion detection system based on artificial neural network (ANNIDS). The advantage of neural network ensures that ANNIDS does not need expert knowledge and it can find unknown or novel intrusions. The key part of ANNIDS is an adaptive resonance theory neural network (ART). ANNIDS can be trained in real-time and in an unsupervised way. A weight hamming distance method is used in detection, which is simple and correct in finding anomalous behavior. A well-trained ANNIDS can monitor the network in real time. The experimental results show that ANNIDS performs best when vigilance parameter is 0.4 to 0.5 and intrusion threshold is 0.4. The false positive error is about 8%, the negative error is about 2%, and the total error is lower 10%.
Keywords :
ART neural nets; learning (artificial intelligence); monitoring; security of data; transport protocols; ANNIDS; TCP/IP protocol; adaptive resonance theory neural network; artificial neural network; network intrusion detection system; network monitoring; packet hamming distance; weight hamming distance method; Artificial neural networks; Computer errors; Computer networks; Computer science; Data mining; Educational institutions; Hamming distance; Immune system; Intrusion detection; Monitoring;
Conference_Titel :
Machine Learning and Cybernetics, 2003 International Conference on
Print_ISBN :
0-7803-8131-9
DOI :
10.1109/ICMLC.2003.1259699
