论文信息 - Performance improvement of intrusion detection with fusion of multiple sensors

Performance improvement of intrusion detection with fusion of multiple sensors

Intrusion detection has become a challenging task with the rapid growth in numbers of computer users. The present-day technology requires an efficient method to detect intrusion in the computer network system. Intrusion detection system is a classifier which collects evidences for the presence of intrusion and raises an alarm for any abnormalities present. However, the use of intrusion detection system encounters two major drawbacks: higher false alarm rate and lower detection rate; these limit the detection performance of intrusion detection system. A prospective approach for improving performance is through the use of multiple sensors/intrusion detection system. Evidence theory is a mathematical theory of evidence which is used to fuse evidences from multiple sources of evidence and outputs a global decision. The work in this paper discusses the limitations and issues with evidence theory and proposes a modified framework for fusion of alarms of multiple intrusion detection systems.

Akshai Aggarwal | Nirbhay Chaubey | Vrushank Shah

[1] Audun Jøsang,et al. Subjective Logic , 2016, Artificial Intelligence: Foundations, Theory, and Algorithms.

[2] N. Balakrishnan,et al. Performance enhancement of Intrusion Detection Systems using advances in sensor fusion , 2008, 2008 11th International Conference on Information Fusion.

[3] Xuan Dau Hoang,et al. Data Mining Methods for Network Intrusion Detection , 2004 .

[4] Qiang Chen,et al. Probabilistic techniques for intrusion detection based on computer audit data , 2001, IEEE Trans. Syst. Man Cybern. Part A.

[5] I. R. Goodman,et al. Mathematics of Data Fusion , 1997 .

[6] Galina L. Rogova,et al. Reliability In Information Fusion : Literature Survey , 2004 .

[7] Chaker Katar. Combining Multiple Techniques for Intrusion Detection , 2006 .

[8] Kristopher Kendall,et al. A Database of Computer Attacks for the Evaluation of Intrusion Detection Systems , 1999 .

[9] Glenn Shafer,et al. A Mathematical Theory of Evidence , 2020, A Mathematical Theory of Evidence.

[10] Amrit Pal Singh,et al. Analysis of Host-Based and Network-Based Intrusion Detection System , 2014 .

[11] John McHugh,et al. Defending Yourself: The Role of Intrusion Detection Systems , 2000, IEEE Software.