Robust Intrusion Detection and Recognition via Sparse Representation

Network anomaly detection systems (NADSs) play a significant role in every network defense system as they detect and prevent malicious activities. Therefore, this paper offers an exhaustive overview of different aspects of anomaly-based network intrusion detection systems (NIDSs). Additionally, contemporary malicious activities in network systems and the important properties of intrusion detection systems are discussed as well. The present survey explains important phases of NADSs, such as pre-processing, feature extraction and malicious behavior detection and recognition. In addition, with regard to the detection and recognition phase, recent machine learning approaches including supervised, unsupervised, new deep and ensemble learning techniques have been comprehensively discussed; moreover, some details about currently available benchmark datasets for training and evaluating machine learning techniques are provided by the researchers. In the end, potential challenges together with some future directions for machine learning-based NADSs are specified.

Download Full-text

NEURAL NETWORK APPROACHES FOR INTRUSION DETECTION AND RECOGNITION

International Journal of Computing ◽

10.47839/ijc.5.3.416 ◽

2014 ◽

pp. 118-125

Author(s):

Vladimir Golovko ◽

Leanid Vaitsekhovich

Keyword(s):

Neural Network ◽

Neural Networks ◽

Intrusion Detection ◽

Data Extraction ◽

Principal Component ◽

Computational Time ◽

Multilayer Perceptrons ◽

Neural Network Models ◽

Time Operation ◽

Detection And Recognition

Most current Intrusion Detection Systems (IDS) examine all data features to detect intrusion. Also existing intrusion detection approaches have some limitations, namely impossibility to process large number of audit data for real-time operation, low detection and recognition accuracy. To overcome these limitations, we apply modular neural network models to detect and recognize attacks in computer networks. It is based on combination of principal component analysis (PCA) neural networks and multilayer perceptrons (MLP). PCA networks are employed for important data extraction and to reduce high dimensional data vectors. We present two PCA neural networks for feature extraction: linear PCA (LPCA) and nonlinear PCA (NPCA). MLP is employed to detect and recognize attacks using feature-extracted data instead of original data. The proposed approaches are tested using KDD-99 dataset. The experimental results demonstrate that the designed models are promising in terms of accuracy and computational time for real world intrusion detection.

Download Full-text

Secure SIFT-based sparse representation for image copy detection and recognition

2010 IEEE International Conference on Multimedia and Expo ◽

10.1109/icme.2010.5582615 ◽

2010 ◽

Cited By ~ 13

Author(s):

Li-Wei Kang ◽

Chao-Yung Hsu ◽

Hung-Wei Chen ◽

Chun-Shien Lu

Keyword(s):

Sparse Representation ◽

Copy Detection ◽

Image Copy Detection ◽

Detection And Recognition

Download Full-text

Detection and Recognition of Atomic Evasions Against Network Intrusion Detection/Prevention Systems

IEEE Access ◽

10.1109/access.2019.2925639 ◽

2019 ◽

Vol 7 ◽

pp. 87816-87826 ◽

Cited By ~ 4

Author(s):

Jia Jingping ◽

Chen Kehua ◽

Chen Jia ◽

Zhou Dengwen ◽

Ma Wei

Keyword(s):

Intrusion Detection ◽

Network Intrusion Detection ◽

Network Intrusion ◽

Detection And Recognition

Download Full-text

FUSION OF RECIRCULATION NEURAL NETWORKS FOR REAL-TIME NETWORK INTRUSION DETECTION AND RECOGNITION

International Journal of Computing ◽

10.47839/ijc.11.4.581 ◽

2014 ◽

pp. 383-390

Author(s):

Pavel Kachurka ◽

Vladimir Golovko

Keyword(s):

Neural Networks ◽

Intrusion Detection ◽

Real Time ◽

Intrusion Detection System ◽

Detection System ◽

Network Intrusion Detection ◽

Traffic Data ◽

Network Intrusion ◽

Anomaly Detector ◽

Detection And Recognition

Intrusion detection system is one of the essential security tools of modern information systems. Continuous development of new types of attacks re quires the development of intelligent approaches for intrusion detection capable to detect newest attacks. We present recirculation neural network based approach which lets to detect previously unseen attack types in real-time mode and to further correct recognition of this types. In this paper we use recirculation neural networks as an anomaly detector as well as a misuse detector, ensemble of anomaly and misuse detectors, fusion of several detectors for correct detection and recognition of attack types. The experiments held on both KDD’99 data and real network traffic data show promising results.

Download Full-text