Open AccessIntrusion Preventing System using Intrusion Detection System Decision Tree Data Mining
Author(s) -
Syurahbil,
Ahmad Noraziah,
M. Fadly Zolkipli,
Ahmed N. Abdalla
Publication year - 2009
Publication title -
american journal of engineering and applied sciences
Language(s) - English
Resource type - Journals
eISSN - 1941-7039
pISSN - 1941-7020
DOI - 10.3844/ajeassp.2009.721.725
Subject(s) - intrusion detection system , decision tree , data mining , computer science , intrusion , anomaly based intrusion detection system , intrusion prevention system , geology , geochemistry
Problem statement: To distinguish the activities of the network traffic that the intrusion and normal is very difficult and to need much time consuming. An analyst must review all the data that large and wide to find the sequence of intrusion on the network connection. Therefore, it needs a way that can detect network intrusion to reflect the current network traffics. Approach: In this study, a novel method to find intrusion characteristic for IDS using decision tree machine learning of data mining technique was proposed. Method used to generate of rules is classification by ID3 algorithm of decision tree. Results: These rules can determine of intrusion characteristics then to implement in the firewall policy rules as prevention. Conclusion: Combination of IDS and firewall so-called the IPS, so that besides detecting the existence of intrusion also can execute by doing deny of intrusion as prevention