New hybrid method for attack detection using combination of evolutionary algorithms, SVM, and ANN

Hosseini Soodeh; Zade Behnam Mohammad Hasani

首页> 外文期刊>Computer networks >New hybrid method for attack detection using combination of evolutionary algorithms, SVM, and ANN

【24h】

New hybrid method for attack detection using combination of evolutionary algorithms, SVM, and ANN

机译：使用进化算法，SVM和ANN组合的攻击检测新的混合方法

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Intrusion detection systems (IDS) have been playing an important role for providing security of computer networks. They detect different types of attacks and malicious software usage, which sometimes cannot be identified by firewalls. Based on machine learning algorithms, many IDS have been extended to classify network traffic as normal or abnormal. This paper describes a new hybrid intrusion detection method with two phases - a feature selection phase and an attack detection phase. In the feature selection phase, a wrapper technique, namely MGA-SVM, is used. This technique combines features of support vector machine (SVM) and the genetic algorithm with multi-parent crossover and multi-parent mutation (MGA). In the attack detection phase, an artificial neural network (ANN) is used to detect attacks. For improving its performance, a combination of a hybrid gravitational search (HGS) and a particle swarm optimization (PSO) is used to train the classifier. The proposed hybrid method is thus called MGA-SVM-HGS-PSO-ANN. It's performance is compared with other popular techniques such as Chi-SVM, ANN based on gradient descent (GD-ANN) and decision tree (DT), ANN based on genetic algorithm (GA-ANN), ANN based on combining gravitational search (GS) and PSO (GSPSO-ANN), ANN based on PSO (PSO-ANN), and ANN based on GS (GS-ANN). Using the NSL-KDD dataset as a standard benchmark for attack detection evaluation, the obtained test results show that the proposed MGA-SVM-HGS-PSO-ANN method can attain a maximum detection accuracy of 99.3%, dimension reduction of NSL-KDD from 42 to 4 features, and needs only 3 s as maximum training time.

机译：入侵检测系统（IDS）一直在为提供计算机网络的安全性发挥重要作用。他们检测到不同类型的攻击和恶意软件使用情况，这有时无法通过防火墙识别。基于机器学习算法，已经扩展了许多ID以将网络流量分类为正常或异常。本文介绍了一种具有两个阶段的新的混合入侵检测方法 - 特征选择阶段和攻击检测阶段。在特征选择阶段，使用包装器技术，即MGA-SVM。该技术结合了支持向量机（SVM）的特征和多父交叉和多父突变（MGA）的遗传算法。在攻击检测阶段，使用人工神经网络（ANN）来检测攻击。为了提高其性能，混合重力搜索（HGS）和粒子群优化（PSO）的组合用于训练分类器。因此，所提出的杂化方法称为MGA-SVM-HGS-PSO-ANN。它的性能与基于组合引力搜索的遗传算法（GA-ANN），基于基于遗传算法（GA-ANN），基于组合的引力搜索（GS）（GS）（GS）的性能与Chi-SVM，基于梯度下降（GD-ANN），ANN等其他流行技术进行比较基于GS（GS-ANN）的PSO（PSO-ANN）和ANN的PSO（GSPSO-ANN），ANN（GSPSO-ANN）和ANN。使用NSL-KDD数据集作为攻击检测评估的标准基准，所获得的测试结果表明，所提出的MGA-SVM-HGS-PSO-ANN方法可以获得99.3％的最大检测精度，来自的NSL-KDD的尺寸减少42至4个功能，仅需要3秒作为最大培训时间。

著录项

来源
《Computer networks》 |2020年第may22期|107168.1-107168.15|共15页
作者
Hosseini Soodeh; Zade Behnam Mohammad Hasani;
展开▼
作者单位

Shahid Bahonar Univ Kerman Fac Math & Comp Dept Comp Sci Kerman Iran|Shahid Bahonar Univ Kerman Mahani Math Res Ctr Kerman Iran;

Shahid Bahonar Univ Kerman Fac Math & Comp Dept Comp Sci Kerman Iran;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Intrusion Detection System (IDS); Support Vector Machine (SVM); Artificial Neural Network (ANN); Genetic Algorithm (GA); Gravitational Search Algorithm (GSA); Feature Selection; Hybrid Method;

机译：入侵检测系统（IDS）;支持向量机（SVM）;人工神经网络（ANN）;遗传算法（GA）;引力搜索算法（GSA）;特征选择;混合方法;

相似文献

外文文献
中文文献
专利

1. Classification of Medical Datasets Using SVMs with Hybrid Evolutionary Algorithms Based on Endocrine-Based Particle Swarm Optimization and Artificial Bee Colony Algorithms [J] . Lin Kuan-Cheng, Hsieh Yi-Hsiu Journal of medical systems . 2015,第10期

机译：基于基于内分泌粒子群优化和人工蜂群算法的混合进化算法的支持向量机支持的医学数据集分类
2. Evolving the SVM model based on a hybrid method using swarm optimization techniques in combination with a genetic algorithm for medical diagnosis [J] . Ye Fei Multimedia Tools and Applications . 2018,第3期

机译：基于混合算法的进化SVM模型，该算法使用群体优化技术结合遗传算法进行医学诊断
3. Hybrid Evolutionary Algorithmn based Intrusion Detection System for Denial of Service Attacks [J] . S. Mourougan, M. Aramudhan Indian Journal of Science and Technology . 2015,第35期

机译：基于混合进化算法的拒绝服务攻击入侵检测系统
4. Forecast combination with optimized SVM based on quantum-inspired hybrid evolutionary method for complex systems prediction [C] . Gharipour Amin, Jazi Ali Yousefian, Sameti Morteza 2011 IEEE Symposium on Computational Intelligence for Financial Engineering and Economics . 2011

机译：基于量子启发式混合进化方法的优化SVM预测组合在复杂系统预测中的应用
5. Study of hybrid strategies for multi-objective optimization using gradient based methods and evolutionary algorithms. [D] . Paez Bautista, Diego Fernando. 2013

机译：研究基于梯度的方法和进化算法的多目标优化混合策略。
6. A Temperature Compensation Method for Piezo-Resistive Pressure Sensor Utilizing Chaotic Ions Motion Algorithm Optimized Hybrid Kernel LSSVM [O] . Ji Li, Guoqing Hu, Yonghong Zhou, 2016

机译：利用混沌离子运动算法优化混合核LSSVM的压阻式压力传感器温度补偿方法
7. Figure 3: Classification of tea cultivars in the study region, with image pre-processing and classification method combinations of: (A) None+MLC (B) None+MDC (C) None+ANN (D) None+SVM (E) MNF+MLC (F) MNF+MDC (G) MNF+ANN (H) MNF+SVM (I) PCA+MLC (J) PCA+MDC (K) PCA+ANN (L) PCA+SVM (M) ICA+MLC (N) ICA+MDC (O) ICA+ANN (P) ICA+SVM. [O] . -1

机译：图3：研究区域茶叶种类分类，图像预处理和分类方法组合：（a）无+ mlc（b）无+ mdc（c）none + Ann（d）无+ svm（e） MNF + MLC（F）MNF + MDC（G）MNF + ANN（H）MNF + SVM（I）PCA + MLC（j）PCA + MDC（k）PCA + ANN（L）PCA + SVM（M）ICA + MLC（n）ICA + MDC（O）ICA + ANN（P）ICA + SVM。

New hybrid method for attack detection using combination of evolutionary algorithms, SVM, and ANN

摘要

著录项

相似文献

相关主题

期刊订阅