ASIA unversity:Item 310904400/4762
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 92958/108462 (86%)
Visitors : 20404098      Online Users : 225
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version

    Please use this identifier to cite or link to this item:

    Title: An Adaptive Automatically Tuning Intrusion Detection System
    Authors: Jeffrey J. P. Tsai;Z. Yu;T. Weigert
    Date: 2008-09
    Issue Date: 2009-12-02 09:04:04 (UTC+8)
    Publisher: Asia University
    Abstract: An intrusion detection system (IDS) is a security layer to detect ongoing intrusive activities in computer systems and networks. Current IDS have two main problems: The first problem is that typically so many alarms are generated as to overwhelm the system operator, many of these being false alarms. The second problem is that continuous tuning of the intrusion detection model is required in order to maintain sufficient performance due to the dynamically changing nature of the monitored system. This manual tuning process relies on the system operators to work out the updated tuning solution and to integrate it into the detection model.

    In this article, we present an automatically tuning intrusion detection system, which controls the number of alarms output to the system operator and tunes the detection model on the fly according to feedback provided by the system operator when false predictions are identified. This system adapts its behavior (i) by throttling the volume of alarms output to the operator in response to the ability of the operator to respond to these alarms, and (ii) by deciding how aggressively the detection model should be tuned based on the accuracy of earlier predictions. We evaluated our system using the KDDCup'99 intrusion detection dataset. Our results show that an adaptive, automatically tuning intrustion detection system will be both practical and efficient.
    Relation: ACM Transactions on Autonomous and Adaptive Systems 3(3)
    Appears in Collections:[Department of Biomedical informatics  ] Journal Article

    Files in This Item:

    File Description SizeFormat
    310904400-4762.doc34KbMicrosoft Word594View/Open

    All items in ASIAIR are protected by copyright, with all rights reserved.

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback