Authors: Protić, Danijela
Stanković, Miomir 
Antić, Vladimir
Affiliations: Mathematical Institute of the Serbian Academy of Sciences and Arts 
Title: Anomaly Based Intrusion Detection Systems in Computer Networks: Feedforward Neural Networks and Nearest Neighbor Models as Binary Classifiers
Series/Report no.: Lecture Notes in Electrical Engineering
Volume: LNEE 984
First page: 595
Last page: 608
Related Publication(s): Computational Intelligence for Engineering and Management Applications
Issue Date: 1-Jan-2023
Rank: M33
ISBN: 978-981-19-8492-1
ISSN: 1876-1100
DOI: 10.1007/978-981-19-8493-8_44
Anomaly based intrusion detection systems monitor the computer network traffic and compare the unknown network behavior with the statistical model of the normal network behavior. The anomaly detection is mainly based on binary classification. Machine learning models are common tools for determining the normality of the network behavior. Binary classifiers like feedforward neural network and the nearest neighbor models have proven to be the best classification option in terms of both processing time and the accuracy when the instances were normalized and the features selected to reduce the data. The results of the experiments carried on the six daily records from the Kyoto 2006+ dataset show the apparent decrease in accuracy of ~ 1% for a number of instances greater than ~ 100,000 per day.
Keywords: Anomaly detection | Binary classification | Feedforward neural network | Machine learning | Nearest neighbors
Publisher: Springer Link

Show full item record

Page view(s)

checked on May 9, 2024

Google ScholarTM




Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.