Ensembling Rule Based Classifiers for Detecting Network Intrusions

Author

Panda, Mrutyunjaya ; Patra, Manas Ranjan

Author_Institution

Dept. of ECE, Gandhi Inst. of Eng. & Technol., Gunupur, India

fYear

2009

fDate

27-28 Oct. 2009

Firstpage

19

Lastpage

22

Abstract

An intrusion is defined as a violation of the security policy of the system, and hence, intrusion detection mainly refers to the mechanisms that are developed to detect violations of system security policy. Recently, data mining techniques have gained importance in providing the valuable information which in turn can help to enhance the decision on identifying the intrusions (attacks). In this paper; we evaluate the performance of various rule based classifiers like: JRip, RIDOR, NNge and decision table using ensemble approach in order to build an efficient network intrusion detection system. We use KDDCup´99, intrusion detection benchmark dataset (which is a part of DARPA evaluation program) for our experimentation. It can be observed from the results that the proposed approach is accurate in detecting network intrusions, provides low false positive rate, simple, reliable and faster in building an efficient network intrusion system.

Keywords

data mining; security of data; JRip; NNge; RIDOR; data mining; decision table; network intrusion detection; rule-based classifiers; security policy; Classification tree analysis; Communication system security; Communications technology; Computer networks; Data mining; Data security; Decision trees; Information security; Intrusion detection; Telecommunication traffic; Accuracy; Ensemble approach; Intrusion Detection; Rule Based Classifiers;

fLanguage

English

Publisher

ieee

Conference_Titel

Advances in Recent Technologies in Communication and Computing, 2009. ARTCom '09. International Conference on

Conference_Location

Kottayam, Kerala

Print_ISBN

978-1-4244-5104-3

Electronic_ISBN

978-0-7695-3845-7

Type

conf

DOI

10.1109/ARTCom.2009.121

Filename

5328099