A hybrid intrusion detection system design for computer network security

Aydın, Muhammed Ali; Zaim, Abdül Halim; Ceylan, K. Gökhan

doi:10.1016/j.compeleceng.2008.12.005

Cited by 246 publications

(110 citation statements)

References 11 publications

Supporting

Mentioning

103

Contrasting

Unclassified

Order By: Relevance

“…Some researchers [18] proposed a hybrid detection approach to increase the capabilities of the current Wireless Intrusion Detection and Prevention System (WIDPS) by amalgamating two intelligent methods of misuse and anomaly. In another effort, a hybrid IDS has been proposed by incorporating the packet header anomaly detection and network traffic anomaly detection systems, which are ananomaly based IDSs with misuse-based IDS Snort [19]. The main goal behind their method is to identify known attacks by misuse while anomaly discovers unknown attacks.…”

Section: Literature Reviewmentioning

confidence: 99%

See 1 more Smart Citation

Intrusion Detection and Prevention Systems in Wireless Networks

Al-Shourbaji

Al-Janabi

2017

KJAR

View full text Add to dashboard Cite

Section: Literature Reviewmentioning

confidence: 99%

“…It provides four essential security functions.These functions include monitoring, analyzing, detecting, and preventing unusual and unauthorized activities [19]. IDPS aims at performing early detection of malicious activity to prevent more severedamage to the protected systems.…”

Section: Idps Functionsmentioning

confidence: 99%

Intrusion Detection and Prevention Systems in Wireless Networks

Al-Shourbaji

Al-Janabi

2017

KJAR

View full text Add to dashboard Cite

“…The key idea is to aim at taking advantage of classification abilities of neural network for unknown attacks and the expert based system for the known attacks. In the paper [11], a hybrid IDS is proposed. It is obtained by combining packet header anomaly detection (PHAD) and network traffic anomaly detection (NETAD).…”

Section: Related Workmentioning

confidence: 99%

A Network Intrusion Detection System Using Clustering and Outlier Detection

Jeyanna¹,

E.Indumathi²,

Punithavathani³

et al. 2015

IJIRCCE

View full text Add to dashboard Cite

ABSTRACT:With the growth of networked computers and associated applications, intrusion detection has become essential to keeping networks secure. A number of intrusion detection methods have been developed for protecting computers and networks using conventional statistical methods as well as data mining methods. It is necessary that the capabilities of intrusion detection methods be updated with the creation of new attacks. This paper proposes a hybrid intrusion detection method that uses a combination of supervised and outlier based methods for improving the efficiency of detection of new and old attacks. The method is evaluated with the benchmark intrusion dataset called the knowledge discovery and data mining Cup 1999 dataset and the new version of KDD (NSL-KDD) dataset. Thus the performance of our method is very good.

show abstract

“…In that respect, a conditional branch containing the task DetectBotnetDPI has been added, so that a more thorough detection procedure is carried out for MPF > 0.8, leading to a hybrid detection mechanism (like e.g. the one presented in [63]). In the second branch the initial task MitigateBotnet has been replaced by its alternative MitigateBotnetMPLS.…”

Section: Access Control Rulesmentioning

confidence: 99%

A privacy-aware access control model for distributed network monitoring

Papagiannakopoulou

Koukovini

Lioudakis

et al. 2013

Computers & Electrical Engineering

View full text Add to dashboard Cite

Despite the usefulness of network monitoring for the operation, maintenance, control and protection of communication networks, as well as law enforcement, network monitoring activities are surrounded by serious privacy implications. Their inherent leakage-proneness is harshened due to the increasing complexity of the monitoring procedures and infrastructures, that may include multiple traffic observation points, distributed mitigation mechanisms and even inter-operator cooperation. However, current approaches present limitations in effectively addressing such privacy issues, as they have not been designed for meeting the particular requirements of distributed network monitoring and conceptualising the corresponding functionalities and infrastructures; additionally, they are not suitable for highly dynamic and distributed environments and for automating privacy-awareness. In this paper, we introduce a new access control model that aims at addressing these concerns; it is conceived on the basis of data protection legislation, as well as distributed network monitoring. The proposed approach provides rich expressiveness, captures all the underlying concepts along with their associations and enables the specification of contextual authorisation policies and * Corresponding author.Email address: epapag@icbnet.ntua.gr (Eugenia I. Papagiannakopoulou) ⋆ This is a revised and expanded version of a paper that appeared in the proceedings of the 4th MITACS Workshop on Foundations & Practice of Security, Paris, France, May 2011, pp. 208-217 [44]. Computers & Electrical Engineering 2011 June 7, 2012 expressive separation and binding of duty constraints. Finally, two key innovations of our work consist in the ability to define access control rules in any possible level of abstraction and in enabling a verification procedure which results in inherently privacy-aware workflows, thus minimising run-time reasoning overheads and fostering the realisation of the Privacy by Design vision. Preprint submitted to Elsevier

show abstract

A hybrid intrusion detection system design for computer network security

Cited by 246 publications

References 11 publications

Intrusion Detection and Prevention Systems in Wireless Networks

Intrusion Detection and Prevention Systems in Wireless Networks

A Network Intrusion Detection System Using Clustering and Outlier Detection

A privacy-aware access control model for distributed network monitoring

Contact Info

Product

Resources

About