Active Learning for Intrusion Detection

Author

Yingjie Gu ; Zydek, Dawid

Author_Institution

Sch. of Comput. Sci. & Eng., Nanjing Univ. of Sci. & Technol., Nanjing, China

fYear

2014

fDate

15-16 May 2014

Firstpage

117

Lastpage

122

Abstract

Intrusion detection is one of the most important problems in network security. Its target is to secure internal networks by identifying unusual access or attacks. Machine learning techniques have been playing a significant role in intrusion detection. Considering the large size of training data and time-consuming labeling task, it is wise to select some informative data to train a classifier. Active learning is a family of approaches selecting samples for labeling to build classifier with maximum prediction accuracy. So it is able to improve the performance of intrusion detection while it is not time-costing and labor-consuming. In this paper, definition and some efficient query strategies of active learning are reviewed and suggested. Some popular algorithms of intrusion detection and the combination of active learning and intrusion detection are also introduced. But existing work of active learning for intrusion detection is very limited. We propose more active learning methods should be developed for intrusion detection.

Keywords

learning (artificial intelligence); pattern classification; security of data; active learning; classifier training; intrusion detection; machine learning techniques; network security; query strategy; Accuracy; Entropy; Intrusion detection; Labeling; Support vector machines; Training; Uncertainty; active learning; intrusion detection; query strategy; uncertainty sampling;

fLanguage

English

Publisher

ieee

Conference_Titel

Wireless Research Collaboration Symposium (NWRCS), 2014 National

Conference_Location

Idaho Falls, ID

Type

conf

DOI

10.1109/NWRCS.2014.26

Filename

6942515