Abstract
Nowadays, computer network systems play an increasingly important role in our society. They have become the target of a wide array of malicious attacks that can turn into actual intrusions. This is the reason why computer security has become an essential concern for network administrators. Intrusions can wreak havoc on LANs. And the time and cost to repair the damage can grow to extreme proportions. Instead of using passive measures to fix and patch security holes, it is more effective to adopt proactive measures against intrusions. Recently, several IDS have been proposed and they are based on various technologies. However, these techniques, which have been used in many systems, are useful only for detecting the existing patterns of intrusion. It can not detect new patterns of intrusion. Therefore, it is necessary to develop new technology of IDS that can find new pattern of intrusion. In this paper, we propose a hybrid network model for IDS based on reducing risk of false negative errors and false positive errors that can detect intrusion in the forms of the denial of service and probe attack detection method by measuring the resource capacities. The “IDS Evaluation Data Set” made by MIT was used for the performance evaluation.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Siraj, A., Bridges, S.M., Vaughn, R.B.: Fuzzy cognitive maps for decision support in an intelligent intrusion detection system. In: IFSA World Congress and 20th NAFIPS International Conference, vol. 4, pp. 2165–2170 (2001)
Lee, H.S., Im, Y.H.: Adaptive Intrusion Detection System Based on SVM and Clustering. Journal of Fuzzy Logic and Intelligent Systems 13(2), 237–242 (2003)
Joo, D.J.: The Design and Analysis of Intrusion Detection Systems using Data Mining, Ph.D. Dissertation, KAIST (2003)
Schuba, C.L., Krsul, I.V., Khun, M.G., Spaford, E.H., Sundram, A., Zamboni, D.: Analysis of a denial of service attack on tcp. In: IEEE Symposium on security and Privacy (1997)
Lee, S.Y., Kim, Y.S.: Design and Analysis of Probe Detection Systems for TCP Networks. International Journal of Advanced Computational Intelligence & Intelligent Informatics 8(4), 369–372 (2004)
Lee, W., Stolfo, S.J.: A Framework for Constructing Features and Models for Intrusion Detection Systems. In: Proceedings of the 5th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining (1999)
Lee, S.Y.: An Adaptive Probe Detection Model using Fuzzy Cognitive Maps, Ph. D. Dissertation, Daejeon University (2003)
Park, S.J.: A Probe Detection Model using the Analysis of the Session Patterns on the Internet Service, Ph. D. Dissertation, Daejeon University (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lee, SY., Kim, YS., Lee, W. (2005). A Hybrid Network Model for Intrusion Detection Based on Session Patterns and Rate of False Errors. In: Gervasi, O., et al. Computational Science and Its Applications – ICCSA 2005. ICCSA 2005. Lecture Notes in Computer Science, vol 3480. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11424758_122
Download citation
DOI: https://doi.org/10.1007/11424758_122
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-25860-5
Online ISBN: 978-3-540-32043-2
eBook Packages: Computer ScienceComputer Science (R0)