A new system to evaluate GA-based clustering algorithms in Intrusion Detection alert management system

机译：一种新的系统评估入侵检测警报管理系统中的基于GA的聚类算法

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Intrusion Detection Systems (IDS) allow to protect systems used by organizations against threats that emerges network connectivity by increasing. The main drawbacks of IDS are the number of alerts generated and failing. Thus in this paper an alert clustering and classification system are proposed. It is able to classify IDS alerts and reduces false positive alerts using clustering of genetic algorithms. To improve the accuracy of the proposed system alert filtering algorithm are used. To achieve the best accuracy in false positive alert reduction and true positive alert clustering and classification, several genetic algorithms are compared. In addition to the known clustering algorithms, two new clustering algorithms are introduced based on Genetic Algorithm and compared with others. By the experimental results on DARPA KDD cup 98 the system is able to cluster and classify alerts and causes reducing false positive alerts considerably.

机译：入侵检测系统（IDS）允许通过增加来保护组织用于反对威胁的系统来通过增加来实现网络连接。 ID的主要缺点是生成和失败的警报数。因此，在本文中提出了一种警报聚类和分类系统。它能够对IDS警报进行分类，并使用遗传算法的聚类减少假正警报。为了提高所提出的系统警报滤波算法的准确性。为了实现误报的最佳准确性和真正的积极警报聚类和分类，比较了几种遗传算法。除了已知的聚类算法之外，基于遗传算法引入了两个新的聚类算法，并与他人进行比较。通过对DARPA KDD CUP 98的实验结果，系统能够集群和分类警报，并导致大大减少假正警报。

著录项

来源
《World Congress on Nature and Biologically Inspired Computing》|2010年||共6页
会议地点
作者
{missing};
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP301-53;
关键词
Genetic Algorithm; IDS; alert classification; alert clustering; false positive alert reduction;

机译：遗传算法;IDS;警报分类;警报群集;假正警报减少;

相似文献

外文文献
中文文献
专利

1. Evaluation Of Fuzzy K-Means And K-Means Clustering Algorithms In Intrusion Detection Systems [J] . Farhad Soleimanian Gharehchopogh, Neda Jabbari, Zeinab Ghaffari Azar International Journal of Scientific & Technology Research . 2012,第11期

机译：入侵检测系统中模糊K-均值和K-均值聚类算法的评估
2. Using Adaptive Neuro-Fuzzy Inference System in Alert Management of Intrusion Detection Systems [J] . Zahra Atashbar Orang, Ezzat Moradpour, Ahmad Habibizad Navin, International Journal of Computer Network and Information Security . 2012,第11期

机译：自适应神经模糊推理系统在入侵检测系统预警管理中的应用
3. Building an Efficient Alert Management Model for Intrusion Detection Systems [J] . El Mostapha Chakir, Mohamed Moughit, Youness Idrissi Khamlichi Advances in Science, Technology and Engineering Systems . 2018,第1期

机译：为入侵检测系统构建有效的警报管理模型
4. A new system to evaluate GA-based clustering algorithms in Intrusion Detection alert management system [C] . 2010 Second World Congress on Nature and Biologically Inspired Computing . 2010

机译：一种评估入侵检测警报管理系统中基于GA的聚类算法的新系统
5. A novel alert correlation and confidence fusion framework in intrusion detection systems. [D] . Yu, Dong. 2006

机译：入侵检测系统中一种新颖的警报关联和置信度融合框架。
6. Corrigendum: In vitro Evaluation of BACT/ALERT® VIRTUO® BACT/ALERT 3D® and BACTEC™ FX Automated Blood Culture Systems for Detection of Microbial Pathogens Using Simulated Human Blood Samples [O] . Giulia Menchinelli, Flora Marzia Liotti, Barbara Fiori, 2019

机译：逆变：对Bact /Alert®Virtuo®Bact / Alert3D®和Bactec™FX自动血液培养系统的体外评估用于使用模拟人血样检测微生物病原体
7. Building an Efficient Alert Management Model for Intrusion Detection Systems [O] . El Mostapha Chakir, Mohamed Moughit, Youness Idrissi Khamlichi 2018

机译：建立用于入侵检测系统的高效警报管理模型
8. Evaluating Intrusion Detection Systems Without Attacking Your Friends: The 1998 DARPA Intrusion Detection Evaluation [R] . Cunningham, R. K., Lippmann, R. P., Fried, D. J., 1999

机译：在不攻击你的朋友的情况下评估入侵检测系统：1998年DaRpa入侵检测评估

A new system to evaluate GA-based clustering algorithms in Intrusion Detection alert management system

摘要

著录项

相似文献

相关主题

期刊订阅