A framework for distributed incremental intrusion detection based on SVM

Author

Xia, Yong-Xiang ; Hu, Zhi-Hua ; Shi, Zhi-Cai

Author_Institution

Electron. & Electr. Eng. Inst., Shanghai Univ. of Eng. Sci., Shanghai, China

Volume

2

fYear

2009

fDate

28-29 Nov. 2009

Firstpage

369

Lastpage

372

Abstract

In order to share the knowledge of intrusion among distributed hosts and make the intrusion detect packages more efficient and reliable, a framework of distributed incremental intrusion detection based on SVM is proposed in the study. In this framework, the locate SVM detects the local attacks and take charge of collecting the new typical samples. A center SVM summarizes the distributed samples and incorporates them to build the incremental SVM for locals. The simulation experiments with KDD Cup 1999 data demonstrate that our proposed method achieves the increasing performance for intrusion detection. The framework is valuable to design distributed intrusion detection system.

Keywords

distributed processing; security of data; support vector machines; KDD Cup 1999 data; distributed hosts; distributed incremental intrusion detection; distributed intrusion detection system; distributed samples; intrusion detect packages; local attacks; support vector machine; Computer security; Data security; Industrial electronics; Intrusion detection; Knowledge engineering; Markov processes; Monitoring; Reliability engineering; Support vector machine classification; Support vector machines; Classification; Distributed incremental intrusion detection; Intrusion detection; Network security; SVM;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Intelligence and Industrial Applications, 2009. PACIIA 2009. Asia-Pacific Conference on

Conference_Location

Wuhan

Print_ISBN

978-1-4244-4606-3

Type

conf

DOI

10.1109/PACIIA.2009.5406583

Filename

5406583