The Incremental Probabilistic Neural Network.
ABSTRACT With the development of the Internet, the Intrusion Detection has been gradually playing a more and more important role in Network Security. Radial Basis Function Neural Network are widely used in Intrusion Detection, especially Probabilistic Neural Network. However, the detection speed is a problem which impedes it to be applied to Real-time Intrusion Detection. In this paper, for increasing the Detection Speed, the Incremental Training Method replaces the Exact Training Method. The simulation experiment shows that the detection speed of Incremental Probabilistic Neural Network is much faster than that of Exact Probabilistic Neural Network. Therefore, the Incremental Probabilistic Neural Network is more suitable for real-time intrusion detection than Exact Probabilistic Neural Network.
- SourceAvailable from: Evangelos Dermatas[show abstract] [hide abstract]
ABSTRACT: In this paper we present and evaluate a Radial-basis-function neural network detector for Distributed-Denial-of-Service (DDoS) attacks in public networks based on statistical features estimated in short-time window analysis of the incoming data packets. A small number of statistical descriptors were used to describe the DDoS attacks behaviour, and an accurate classification is achieved using the Radial-basis-function neural networks (RBF-NN). The proposed method is evaluated in a simulated public network and showed detection rate better than 98% of DDoS attacks using only three statistical features estimated from one window of data packets of 6 s length. The same type of experiments were carried out on a real network giving significantly better results: a 100% DDoS detection rate is achieved followed by a 0% of false alarm rate using different statistical descriptors and training conditions for the RBF-NN.Computer Networks. 01/2005;
- [show abstract] [hide abstract]
ABSTRACT: Masquerade detection by automated means is gaining widespread interest due to the serious impact of masquerades on computer system or network. Several techniques have been introduced in an effort to minimize up to some extent the risk associated with masquerade attack. In this respect, we have developed a novel technique which comprises of Naïve Bayes approach and weighted radial basis function similarity approach. The proposed scheme exhibits very promising results in comparison with many earlier techniques while experimenting on SEA dataset in detecting masquerades. Yes YesJournal in Computer Virology 07/2007;
- [show abstract] [hide abstract]
ABSTRACT: Most intrusion detection system (IDS) with a single-level structure can only detect either misuse or anomaly attacks. Some IDSs with multi-level structure or multi-classifier are proposed to detect both attacks, but they are limited in adaptively learning. In this paper, two hierarchical IDS frameworks using Radial Basis Functions (RBF) are proposed. A serial hierarchical IDS (SHIDS) is proposed to identify misuse attack accurately and anomaly attacks adaptively. A parallel hierarchical IDS (PHIDS) is proposed to enhance the SHIDS’s functionalities and performance. The experiments show that the two proposed IDSs can detect network intrusions in real-time, train new classifiers for novel intrusions automatically, and modify their structures adaptively after new classifiers are trained.Pattern Recognition Letters. 01/2005;