Publication:
Hybrid of rough set theory and Artificial Immune Recognition System as a solution to decrease false alarm rate in intrusion detection system

No Thumbnail Available

Date

2011

Authors

Journal Title

Journal ISSN

Volume Title

Publisher

Research Projects

Organizational Units

Journal Issue

Abstract

Denial of Service (DoS) attacks is one of the security threats for computer systems and applications. It usually make use of software bugs to crash or freeze a service or network resource or bandwidth limits by making use of a flood attack to saturate all bandwidth. Predicting a potential DOS attacks would be very helpful for an IT departments or managements to optimize the security of intrusion detection system (IDS). Nowadays, false alarm rates and accuracy become the main subject to be addressed in measuring the effectiveness of IDS. Thus, the purpose of this work is to search the classifier that is capable to reduce the false alarm rates and increase the accuracy of the detection system. This study applied Artificial Immune System (AIS) in IDS. However, this study has been improved by using integration of rough set theory (RST) with Artificial Immune Recognition System 1 (AIRS1) algorithm, (Rough-AIRS1) to categorize the DoS samples. RST is expected to be able to reduce the redundant features from huge amount of data that is capable to increase the performance of the classification. Furthermore, AIS is an incremental learning approach that will minimize duplications of cases in a knowledge based. It will be efficient in terms of memory storage and searching for similarities in Intrusion Detection (IDS) attacks patterns. This study use NSL-KDD 20% train dataset to test the classifiers. Then, the performances are compared with single AIRS1 and J48 algorithm. Results from these experiments show that Rough-AIRS1 has lower number of false alarm rate compared to single AIRS but a little bit higher than J48. However, accuracy for this hybrid technique is slightly lower compared to others. � 2011 IEEE.

Description

Keywords

accuracy, artificial immune recognition system, false alarm rate, Intrusion detection system, rough set theory, accuracy, Artificial immune recognition system, False alarm rate, Intrusion detection system, Rough set, Alarm systems, Algorithms, Bandwidth, Computer crime, Errors, Knowledge based systems, Network security, Program debugging, Rough set theory, Statistical tests, Intrusion detection

Citation

URI

https://www.scopus.com/inward/record.uri?eid=2-s2.0-84856660614&doi=10.1109%2fISIAS.2011.6122808&partnerID=40&md5=1dc2b0829ee99c7453ded68b0359eff4
 https://oarep.usim.edu.my/handle/123456789/8628

Collections

Scopus