Title :
An Improvement of Payload-Based Intrusion Detection Using Fuzzy Support Vector Machine
Author :
Zhang, Guiling ; Ke, Yongzhen ; Sun, Liankun ; Liu, Weixin
Author_Institution :
Dept. of Comput. Sci., Tianjin Polytech. Univ., Tianjin, China
Abstract :
Intrusion detection plays a very important role in network security system. It is proved to analyze the payload of network protocol and to model a payload-based anomaly detector (PAYL) can successfully detect outliers of network servers. This paper extends these works by applying a new noise-reduced fuzzy support vector machine (fSVM) to improve the detection rate. The new method named PAYL-fSVM employs reconstruction error based fuzzy membership function to reduce the noisy of the data and to solve the sharp boundary problem. Experimental results based on DARPA data set demonstrated that the proposed scheme can achieve higher detection rate at very low false positive rate than the original PAYL method.
Keywords :
boundary-value problems; fuzzy set theory; protocols; security of data; support vector machines; DARPA data set; fuzzy membership function; network protocol; network security system; noise-reduced fuzzy support vector machine; payload-based anomaly detector; payload-based intrusion detection; reconstruction error; sharp boundary problem; Computer science; Detectors; Fuzzy systems; Intrusion detection; Payloads; Protection; Sun; Support vector machines; Telecommunication traffic; Traffic control;
Conference_Titel :
Intelligent Systems and Applications (ISA), 2010 2nd International Workshop on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-5872-1
Electronic_ISBN :
978-1-4244-5874-5
DOI :
10.1109/IWISA.2010.5473265
