Intrusion Detection using Machine Learning
Abstract
It is well known that distributed attacks simultaneously launched from many hosts have caused the most serious problems in recent years including problems of privacy leakage and denial of services. Thus, how to detect those attacks at early stage has become an important and urgent topic in the cyber security community. For this purpose, recognizing C&C (Command & Control) communication between compromised bots and the C&C server becomes a crucially important issue, because C&C communication is in the preparation phase of distributed attacks. Although attack detection based on signature has been practically applied since long ago, it is well-known that it cannot efficiently deal with new kinds of attacks. In recent years, ML (Machine learning)-based detection methods have been studied widely.SVM (Support Vector Machine) and PCA (Principal Component Analysis) are utilized for feature selection and SVM and RF (Random Forest) are for building the classifier. We find that the detection performance is generally getting better if more features are utilized.
Metrics
Topics
Related Documents
Intrusion detection using machine learning
Intrusion Detection using Machine Learning
Intrusion Detection using Machine Learning
Marco BarrenoBlaine Nelson AnthonyD JosephJ TygarYohei Okada*Shingo Ata*Nobuyuki NakamuraYoshihiro NakahiraIkuo OkaNutan Farah HaqMusharrat RafniAbdur Rahman OnikFaisal Muhammad ShahMd Avishek KhanHridoyAnna BuczakErhan Guven
Intrusion Detection Using Machine Learning
Mohammed M. MazidA. B. M. Shawkat AliKevin S. Tickle