A multi-expert classification framework with transferable voting for Intrusion Detection

Tich Phuoc Tran, Pohsiang Tsai, Tony Jan

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Network security is a critical component for any sized organization. While static defence technologies such as firewalls and anti-virus provide basic protection for computer networks, an Intrusion Detection System (IDS) can improve overall security by identifying and responding to novel malicious activities. The current existing IDS methods suffer from low accuracy and system robustness. To overcome such limitations, this paper proposes a multi-expert classification framework for detecting different types of network anomalies. Specifically, different types of intrusions will be detected with different strategies, including different attribute selections and learning algorithms. Several voting approaches are also investigated for the purpose of classifier combination. The Knowledge Discovery and Data Mining (KDD-99) dataset is used as a benchmark to compare this method with other existing techniques. Empirical results indicate that the proposed design outperforms other state-of-the-art learning methods in terms of detection capabilities, misclassification cost and processing overheads.

Original languageEnglish
Title of host publicationProceedings - 7th International Conference on Machine Learning and Applications, ICMLA 2008
Pages877-882
Number of pages6
DOIs
Publication statusPublished - 2008
Externally publishedYes
Event7th International Conference on Machine Learning and Applications, ICMLA 2008 - San Diego, CA, United States
Duration: 11 Dec 200813 Dec 2008

Publication series

NameProceedings - 7th International Conference on Machine Learning and Applications, ICMLA 2008

Conference

Conference7th International Conference on Machine Learning and Applications, ICMLA 2008
Country/TerritoryUnited States
CitySan Diego, CA
Period11/12/0813/12/08

Keywords

  • Multi-expert classification
  • Network Intrusion Detection
  • Single transferable voting

Fingerprint

Dive into the research topics of 'A multi-expert classification framework with transferable voting for Intrusion Detection'. Together they form a unique fingerprint.

Cite this