Abstract
In this paper, a novel intrusion detection system (IDS) is developed using a cost based support vector machine (SVM). While developing an IDS, due to the imbalanced characteristics it is very difficult to differentiate the attack events from a non-attack (normal) event in any network environment. The cost based SVM facilitates to put much weight to one pattern over another ones to differentiate attack and non-attack cases with a high accuracy. The same can be applied on a multiclass attack problems by using cost factor to each ratio of different types of attacks. In this study, the cost based SVM has been applied to classify DARPA99 intrusion detection dataset. The experimental results show that the cost based SVM can outperform standard SVM while attempting to differentiate a case as either attack or non-attack (normal). Furthermore, we applied the cost based SVM with an RBF kernel to a multiclass attack problem. Experimental result achieved about 99 % detection accuracy when it was applied to detect the type of attacks as either of Normal, DOS, Probe and R2L from DARPA99 dataset.
| Original language | English |
|---|---|
| Title of host publication | Recent Advances in Information and Communication Technology 2016 - Proceedings of the 12th International Conference on Computing and Information Technology, IC2IT |
| Editors | Phayung Meesad, Sirapat Boonkrong, Herwig Unger |
| Publisher | Springer Verlag |
| Pages | 105-115 |
| Number of pages | 11 |
| ISBN (Print) | 9783319404141 |
| DOIs | |
| State | Published - 2016 |
| Externally published | Yes |
Publication series
| Name | Advances in Intelligent Systems and Computing |
|---|---|
| Volume | 463 |
| ISSN (Print) | 2194-5357 |
Bibliographical note
Publisher Copyright:© Springer International Publishing Switzerland 2016.
Keywords
- Cost based SVM
- IDS
- Imbalanced data
ASJC Scopus subject areas
- Control and Systems Engineering
- General Computer Science