| publication name | Machine learning techniques for anomalies detection and classification. Advances in Security of Information and Communication Networks, Communications in Computer and Information Science Volume 381, 2013, pp 219-229. |
|---|---|
| Authors | Amira Sayed A. Aziz, Aboul Ella Hassanien, Ahmad Taher Azar, Sanaa El-Ola Hanafy |
| year | 2013 |
| keywords | |
| journal | |
| volume | Not Available |
| issue | Not Available |
| pages | Not Available |
| publisher | Not Available |
| Local/International | International |
| Paper Link | http://link.springer.com/chapter/10.1007/978-3-642-40597-6_19 |
| Full paper | download |
| Supplementary materials | Not Available |
Abstract
Malicious users are always trying to intrude the information systems, taking advantage of different system vulnerabilities. As the Internet grows, the security limitations are becoming more crucial, facing such threats. Intrusion Detection Systems (IDS) are a common protecting systems that is used to detect malicious activity from inside and outside users of a system. It is very important to increase detection accuracy rate as possible, and get more information about the detected attacks, as one of the drawbacks of an anomaly IDS is the lack of detected attacks information. In this paper, an IDS is built using Genetic Algorithms (GA) and Principal Component Analysis (PCA) for feature selection, then some classification techniques are applied on the detected anomalies to define their classes. The results show that J48 mostly give better results than other classifiers, but for certain attacks Naive Bayes give the best results.