Title :
Comparative Study of Supervised Machine Learning Techniques for Intrusion Detection
Author :
Gharibian, Farnaz ; Ghorbani, Ali A.
Author_Institution :
Network Security Lab., Univ. of New Brunswick, Fredericton, NB
Abstract :
Intrusion detection is an effective approach for dealing with various problems in the area of network security. This paper presents a comparative study of using supervised probabilistic and predictive machine learning techniques for intrusion detection. Two probabilistic techniques Naive Bayes and Gaussian and two predictive techniques decision tree and random forests are employed. Different training datasets constructed from the KDD99 dataset are employed for training. The ability of each technique for detecting four attack categories (DoS,Probe,R2L and U2R) have been compared. The statistical results to show the sensitivity of each technique to the population of attacks in a dataset have also been reported. We compare the performance of the techniques and also investigate the robustness of each technique by calculating their standard deviations with respect to the detection rate of each attack category.
Keywords :
Bayes methods; Gaussian processes; decision trees; learning (artificial intelligence); probability; security of data; Gaussian techniques; Naive Bayes techniques; decision tree; intrusion detection; network security; predictive machine learning; random forests; statistical analysis; supervised probabilistic machine learning; training KDD99 datasets; Computer science; Computer security; Data security; Decision trees; Intrusion detection; Laboratories; Machine learning; Machine learning algorithms; Pattern matching; Robustness;
Conference_Titel :
Communication Networks and Services Research, 2007. CNSR '07. Fifth Annual Conference on
Conference_Location :
Frederlcton, NB
Print_ISBN :
0-7695-2835-X
DOI :
10.1109/CNSR.2007.22
