Title :
Adaptive intrusion prevention algorithm based on HMM Model
Author :
Xiuqing, Chen ; Yongping, Zhang ; Yu, Guo
Author_Institution :
School of Computer Science and Technology China University of Mining and Technology, CUMT Xuzhou, China
Abstract :
Intrusion prevention technologies and mechanisms have been developed to enhance the network security. Model-based approach is one of the most promising approaches for intrusion prevention and intrusion detection, since it can reveal the hidden characteristic of time series. Hidden Markov Model (HMM) is a main time series model. In the implement of the intrusion prevention mechanism, the combination of fast adaptive clustering algorithm and intrusion prevention algorithm is used to redetection, which can adaptively update model, and raise speed of detection. Experimental results with the KDD Cup99 data sets demonstrate that false positive rate of the detection algorithm is lower than conventional model-based detection algorithm, while the detection rate is still kept in a good state.
Keywords :
Adaptation model; Clustering algorithms; Computational modeling; Hidden Markov models; Intrusion detection; Training; Hidden Markov Model; fast adaptive clustering algorithm; intrusion prevention; network security;
Conference_Titel :
E -Business and E -Government (ICEE), 2011 International Conference on
Conference_Location :
Shanghai, China
Print_ISBN :
978-1-4244-8691-5
DOI :
10.1109/ICEBEG.2011.5876661
