Hybrid Approach for Detection of Anomaly Network Traffic using Data Mining Techniques | Zendy

Basant Agarwal | Zendy; Namita Mittal | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Hybrid Approach for Detection of Anomaly Network Traffic using Data Mining Techniques

Author(s) -

Basant Agarwal,

Namita Mittal

Publication year - 2012

Publication title -

procedia technology

Language(s) - English

Resource type - Journals

ISSN - 2212-0173

DOI - 10.1016/j.protcy.2012.10.121

Subject(s) - support vector machine , anomaly detection , data mining , intrusion detection system , computer science , adaptability , entropy (arrow of time) , artificial intelligence , anomaly based intrusion detection system , network security , machine learning , pattern recognition (psychology) , computer security , physics , ecology , quantum mechanics , biology

Anomaly based Intrusion Detection System (IDS) is getting popularity due to its adaptability to the changes in the behavior of network traffic as it has the ability to detect the new attacks. As it is very difficult to set any predefined rule for identifying correctly attack traffic since there is no major difference between normal and attack traffic. In this paper, Anomaly traffic detection system based on the Entropy of network features and Support Vector Machine (SVM) are compared. Further, a hybrid technique that is combination of both entropy of network features and support vector machine is compared with individual methods. DARPA Intrusion Detection Evaluation dataset is used in order to evaluate the methods. It is proved that entropy based detection technique is capable of identifying anomalies in network better than support vector machine based detection system. In addition, hybrid approach outperforms entropy and SVM based techniques.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research