Classifying network attack types with machine learning approach

Author

Wattanapongsakorn, Naruemon ; Sangkatsanee, Phurivit ; Srakaew, Sanan ; Charnsripinyo, Chalermpol

Author_Institution

Dept. of Comput. Eng., King Mongkut´´s Univ. of Technol. Thonburi, Bangkok, Thailand

fYear

2011

fDate

26-28 Sept. 2011

Firstpage

98

Lastpage

102

Abstract

The growing rate of network attacks including hacker, cracker, and criminal enterprises have been increasing, which impact to the availability, confidentiality, and integrity of critical information data. In this paper, we propose a network-based Intrusion Detection and Classification System (IDCS) using well-known machine learning technique to classify an online network data that is preprocessed to have only 12 features. The number of features affects to the detection speed and resource consumption. Unlike other intrusion detection approaches where a few attack types are classified, our IDCS can classify normal network activities and identify 17 different attack types. Hence, our detection and classification approach can greatly reduce time to diagnose and prevent the network attacks.

Keywords

computer crime; computer network security; learning (artificial intelligence); pattern classification; IDCS; criminal enterprise; information data; machine learning approach; network activity; network attack type classification; network-based intrusion classification system; network-based intrusion detection system; online network data; resource consumption; Decision trees; Feature extraction; Intrusion detection; Machine learning; Probes; Testing; Training;

fLanguage

English

Publisher

ieee

Conference_Titel

Networked Computing (INC), 2011 The 7th International Conference on

Conference_Location

Gyeongsangbuk-do

Print_ISBN

978-1-4577-1129-9

Electronic_ISBN

978-89-88678-43-5

Type

conf

Filename

6058953