Intelligent Intrusion Detection System Through Combined and Optimized Machine Learning

Syed Ali Raza Shah, Biju Issac, Seibu Mary Jacob

Research output: Contribution to journalArticle

296 Downloads (Pure)

Abstract

In this paper, an existing rule-based intrusion detection system (IDS) is made more intelligent through the application of machine learning. Snort was chosen as it is an open source software and though it was performing well, it showed false positives (FPs). To find the best performing machine learning algorithms (MLAs) to use with Snort so as to improve its detection, we tested some algorithms on three available datasets. Support vector machine (SVM) was chosen along with fuzzy logic and decision tree based on their accuracy. Combined versions of algorithms through ensemble SVM along with other variants were tried on the generated traffic of normal and malicious packets at 10Gbps. Optimized versions of the SVM along with firefly and ant colony optimization (ACO) were also tried, and the accuracy improved remarkably. Thus, the application of combined and optimized MLAs to Snort at 10Gbps worked quite well.

Original languageEnglish
Article number1850007
JournalInternational Journal of Computational Intelligence and Applications
Volume17
Issue number2
DOIs
Publication statusPublished - 28 Jun 2018

Fingerprint Dive into the research topics of 'Intelligent Intrusion Detection System Through Combined and Optimized Machine Learning'. Together they form a unique fingerprint.

  • Cite this