A Collaborative Intrusion Detection Model using a novel optimal weight strategy based on Genetic Algorithm for Ensemble Classifier

Cybersecurity, especially intrusion detection, is becoming increasingly critical in our daily life. The intrusion detection systems (IDS) have been widely used to prevent disclosure of personal information and detect potentially suspicious attacks. Although many machine learning algorithms have been broadly applied to enhance the performance of IDS, low detection rate and high false alarm rate are still two critical problems. A collaborative and robust intrusion detection model using a novel optimal weight strategy based on Genetic Algorithm (GA) for ensemble classifier is proposed in this paper. Since network data stream can be divided into three categories according to network protocols, detectors are applied in the network protocol separately. All of the detectors can work collaboratively and efficiently. In the proposed model, GA is used to optimize the weight of each base classifier of ensemble classifier. In order to improve features quality, Principal Component Analysis (PCA) is used for dimension reduction and attribute extraction. The NSL-KDD datasets is used to test the effectiveness of the collaborative intrusion detection model. Experimental results show that the proposed model has a higher accuracy and better generalized performance than others in this field.

[1]  JuiHsi Fu,et al.  A multi-class SVM classification system based on learning methods from indistinguishable chinese official documents , 2012, Expert Syst. Appl..

[2]  M. Shyu,et al.  A Novel Anomaly Detection Scheme Based on Principal Component Classifier , 2003 .

[3]  Panos Louvieris,et al.  Effects-based feature identification for network intrusion detection , 2013, Neurocomputing.

[4]  Ravindra C. Thool,et al.  Intrusion Detection System Using Bagging with Partial Decision TreeBase Classifier , 2015 .

[5]  Wei-Yang Lin,et al.  Intrusion detection by machine learning: A review , 2009, Expert Syst. Appl..

[6]  Zhi-Hua Zhou,et al.  Ensemble Methods: Foundations and Algorithms , 2012 .

[7]  Mamun Bin Ibne Reaz,et al.  A survey of intrusion detection systems based on ensemble and hybrid classifiers , 2017, Comput. Secur..

[8]  V. S. Shankar Sriram,et al.  An efficient intrusion detection system based on hypergraph - Genetic algorithm for parameter optimization and feature selection in support vector machine , 2017, Knowl. Based Syst..

[9]  Ali A. Ghorbani,et al.  A detailed analysis of the KDD CUP 99 data set , 2009, 2009 IEEE Symposium on Computational Intelligence for Security and Defense Applications.

[10]  Ryan M. Rifkin,et al.  In Defense of One-Vs-All Classification , 2004, J. Mach. Learn. Res..

[11]  Longbing Cao,et al.  SVM-based multi-state-mapping approach for multi-class classification , 2017, Knowl. Based Syst..

[12]  Seyed Mojtaba Hosseini Bamakan,et al.  An effective intrusion detection framework based on MCLP/SVM optimized by time-varying chaos particle swarm optimization , 2016, Neurocomputing.

[13]  Julio Ortega Lopera,et al.  PCA filtering and probabilistic SOM for network intrusion detection , 2015, Neurocomputing.

[14]  Victor C. M. Leung,et al.  Applying a new localized generalization error model to design neural networks trained with extreme learning machine , 2014, Neural Computing and Applications.

[15]  Thomas G. Dietterich Multiple Classifier Systems , 2000, Lecture Notes in Computer Science.

[16]  Chun-Hung Richard Lin,et al.  Intrusion detection system: A comprehensive review , 2013, J. Netw. Comput. Appl..

[17]  Xiangji Huang,et al.  Mining network data for intrusion detection through combining SVMs with ant colony networks , 2014, Future Gener. Comput. Syst..

[18]  Shengli Wu,et al.  Effective Neural Network Ensemble Approach for Improving Generalization Performance , 2013, IEEE Transactions on Neural Networks and Learning Systems.

[19]  Zhengxin Chen,et al.  Multiple criteria mathematical programming for multi-class classification and application in network intrusion detection , 2009, Inf. Sci..

[20]  Siyang Zhang,et al.  A novel hybrid KPCA and SVM with GA model for intrusion detection , 2014, Appl. Soft Comput..

[21]  Mamun Bin Ibne Reaz,et al.  A novel SVM-kNN-PSO ensemble method for intrusion detection system , 2016, Appl. Soft Comput..

[22]  Chih-Jen Lin,et al.  A comparison of methods for multiclass support vector machines , 2002, IEEE Trans. Neural Networks.

[23]  Yu-Lin He,et al.  Fuzziness based semi-supervised learning approach for intrusion detection system , 2017, Inf. Sci..