TY - GEN
T1 - Capture the drifting of normal behavior traces for adaptive intrusion detection using modified SVMS
AU - Zhang, Zong Hua
AU - Shen, Hong
PY - 2004
Y1 - 2004
N2 - To capture the drifting of normal behavior traces for suppressing false alarms of intrusion detection, an adaptive intrusion detection system AID with incremental learning ability is proposed in this paper. A generic framework, including several important components, is discussed in details. One-class support vector machine is modified as the kernel algorithm of AID, and the performance is evaluated using reformulated 1998 DARPA BSM data set. The experiment results indicate that the modified SVMs can be trained in a incremental way, and the performance outperform that of the original ones with fewer support vectors(SVs) and less training time without decreasing detection accuracy. Both of these achievements benefit an adaptive intrusion detection system significantly.
AB - To capture the drifting of normal behavior traces for suppressing false alarms of intrusion detection, an adaptive intrusion detection system AID with incremental learning ability is proposed in this paper. A generic framework, including several important components, is discussed in details. One-class support vector machine is modified as the kernel algorithm of AID, and the performance is evaluated using reformulated 1998 DARPA BSM data set. The experiment results indicate that the modified SVMs can be trained in a incremental way, and the performance outperform that of the original ones with fewer support vectors(SVs) and less training time without decreasing detection accuracy. Both of these achievements benefit an adaptive intrusion detection system significantly.
UR - http://www.scopus.com/inward/record.url?scp=6344282810&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:6344282810
SN - 0780384032
T3 - Proceedings of 2004 International Conference on Machine Learning and Cybernetics
SP - 3046
EP - 3051
BT - Proceedings of 2004 International Conference on Machine Learning and Cybernetics
T2 - Proceedings of 2004 International Conference on Machine Learning and Cybernetics
Y2 - 26 August 2004 through 29 August 2004
ER -