HMM-based integration of multiple models for intrusion detection
In this paper, a novel intrusion detection system based on hidden Markov model, analyzing with Fast Adaptive Clustering Algorithm, combining the characteristic of dynamic adaption and sniffing from multi-model has been proposed. The proposed detection model combines qualities from all these categori...
Uloženo v:
| Vydáno v: | 2010 3rd International Conference on Advanced Computer Theory and Engineering(ICACTE) Ročník 2; s. V2-137 - V2-140 |
|---|---|
| Hlavní autoři: | , , |
| Médium: | Konferenční příspěvek |
| Jazyk: | angličtina |
| Vydáno: |
IEEE
01.08.2010
|
| Témata: | |
| ISBN: | 1424465397, 9781424465392 |
| ISSN: | 2154-7491 |
| On-line přístup: | Získat plný text |
| Tagy: |
Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
|
| Shrnutí: | In this paper, a novel intrusion detection system based on hidden Markov model, analyzing with Fast Adaptive Clustering Algorithm, combining the characteristic of dynamic adaption and sniffing from multi-model has been proposed. The proposed detection model combines qualities from all these categories, anomaly detection and misuse detection. The proposed mechanism not only takes the responsibility to collect and detect all of the desired information on each different stage, but also denotes specific clustering algorithm to indicate the significance of possible influence on each clustered data. All of the clustered data and detected normal/abnormal signals will be transferred to the database of the anomaly detection model for further integrated evaluation on those multiple observing factors based on hidden Markov model algorithm. The experimental results with the KDD Cup99 data sets demonstrate that the proposed IDS mechanism possesses good efficiency and has a high detection rate. |
|---|---|
| ISBN: | 1424465397 9781424465392 |
| ISSN: | 2154-7491 |
| DOI: | 10.1109/ICACTE.2010.5579109 |