| Authors: | Protić, Danijela Stanković, Miomir Antić, Vladimir |
Affiliations: | Mathematical Institute of the Serbian Academy of Sciences and Arts | Title: | Anomaly Based Intrusion Detection Systems in Computer Networks: Feedforward Neural Networks and Nearest Neighbor Models as Binary Classifiers | Series/Report no.: | Lecture Notes in Electrical Engineering | Volume: | LNEE 984 | First page: | 595 | Last page: | 608 | Related Publication(s): | Computational Intelligence for Engineering and Management Applications | Issue Date: | 1-Jan-2023 | Rank: | M33 | ISBN: | 978-981-19-8492-1 | ISSN: | 1876-1100 | DOI: | 10.1007/978-981-19-8493-8_44 | Abstract: | Anomaly based intrusion detection systems monitor the computer network traffic and compare the unknown network behavior with the statistical model of the normal network behavior. The anomaly detection is mainly based on binary classification. Machine learning models are common tools for determining the normality of the network behavior. Binary classifiers like feedforward neural network and the nearest neighbor models have proven to be the best classification option in terms of both processing time and the accuracy when the instances were normalized and the features selected to reduce the data. The results of the experiments carried on the six daily records from the Kyoto 2006+ dataset show the apparent decrease in accuracy of ~ 1% for a number of instances greater than ~ 100,000 per day. |
Keywords: | Anomaly detection | Binary classification | Feedforward neural network | Machine learning | Nearest neighbors | Publisher: | Springer Link |
Show full item record
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.