A machine learning approach with verification of predictions and assisted supervision for a rule-based network intrusion detection system

Fernández Villamor, José Ignacio y Garijo Ayestaran, Mercedes (2008). A machine learning approach with verification of predictions and assisted supervision for a rule-based network intrusion detection system. En: "WEBIST 2008: 4th International Conference on Web Information Systems and Technologies", 04/05/2008-07/05/2008, Funchal, Portugal. ISBN 978-989-8111-26-5.

Descripción

Título: A machine learning approach with verification of predictions and assisted supervision for a rule-based network intrusion detection system
Autor/es:
  • Fernández Villamor, José Ignacio
  • Garijo Ayestaran, Mercedes
Tipo de Documento: Ponencia en Congreso o Jornada (Artículo)
Título del Evento: WEBIST 2008: 4th International Conference on Web Information Systems and Technologies
Fechas del Evento: 04/05/2008-07/05/2008
Lugar del Evento: Funchal, Portugal
Título del Libro: WEBIST 2008: Proceedings of the 4th International Conference on Web Information Systems and Technologies
Fecha: 2008
ISBN: 978-989-8111-26-5
Materias:
Palabras Clave Informales: Network Intrusion Detection Systems, Rules of inference, Machine learning, Decision trees, Self-organizing maps
Escuela: E.T.S.I. Telecomunicación (UPM)
Departamento: Ingeniería de Sistemas Telemáticos [hasta 2014]
Licencias Creative Commons: Reconocimiento - Sin obra derivada - No comercial

Texto completo

[img]
Vista Previa
PDF (Document Portable Format) - Se necesita un visor de ficheros PDF, como GSview, Xpdf o Adobe Acrobat Reader
Descargar (161kB) | Vista Previa

Resumen

Network security is a branch of network management in which network intrusion detection systems provide attack detection features by monitorization of traffic data. Rule-based misuse detection systems use a set of rules or signatures to detect attacks that exploit a particular vulnerability. These rules have to be handcoded by experts to properly identify vulnerabilities, which results in misuse detection systems having limited extensibility. This paper proposes a machine learning layer on top of a rule-based misuse detection system that provides automatic generation of detection rules, prediction verification and assisted classification of new data. Our system offers an overall good performance, while adding an heuristic and adaptive approach to existing rule-based misuse detection systems.

Más información

ID de Registro: 4109
Identificador DC: http://oa.upm.es/4109/
Identificador OAI: oai:oa.upm.es:4109
URL Oficial: http://www.webist.org/WEBIST2008/index.htm
Depositado por: Memoria Investigacion
Depositado el: 14 Sep 2010 11:38
Ultima Modificación: 20 Abr 2016 13:27
  • Open Access
  • Open Access
  • Sherpa-Romeo
    Compruebe si la revista anglosajona en la que ha publicado un artículo permite también su publicación en abierto.
  • Dulcinea
    Compruebe si la revista española en la que ha publicado un artículo permite también su publicación en abierto.
  • Recolecta
  • e-ciencia
  • Observatorio I+D+i UPM
  • OpenCourseWare UPM