Intrusion detection system modeling based on neural networks and fuzzy logic

Modern computer network IDS (Intrusion Detection Systems) and IPS (Intrusion Prevention Systems) increasingly use SOM (Self-Organizing Map) in classification of network traffic process. In this research, training data preparation is implemented as a preprocessing block composed of SOMs. Several networks with different characteristics are linked cascade and parallel for the purpose of creating SOM block. This block is used for reduction of training data through process of clustering data in smaller subsets. Training data are divided in clusters and used for training of ANFIS (Adaptive Network Based Inference System) components of the system. IDS hybrid structure consists of SOM block cascade linked with fuzzy system. The proposed hybrid structure is trained, tested and validated using KDD CUP 99 data set. This paper presents advantages and disadvantages of hybrid approach based on neural networks and fuzzy logic comparing it to similar solutions that can be found in the literature. New refined training data set is prepared with proposed solution. Overall classification using this solution, gives better results for one class compared to best results of KDD CUP 99 competition and other recently developed solutions.

[1]  S. P. Shantharajah,et al.  A Study on NSL-KDD Dataset for Intrusion Detection System Based on Classification Algorithms , 2015 .

[2]  D. Kumar,et al.  An Hybrid Genetic Algorithm, Kernel SVM ANFIS Based Multilayer Attack Classification System Size , 2015 .

[3]  Li Feng,et al.  Enhanced Dynamic Self-organizing Maps For Data Cluster , 2013 .

[4]  S. Shantharajah,et al.  Intrusion Detection and Classification Using Hybrid Support Vector Machine and Dynamic Ant Colony Algorithm , 2015 .

[5]  Itzhak Levin,et al.  KDD-99 classifier learning contest LLSoft's results overview , 2000, SKDD.

[6]  Siti Mariyam Shamsuddin,et al.  Ensemble classifiers for network intrusion detection system , 2009 .

[7]  S. Radhakrishnan,et al.  Intrusion detection in MANET using Self Organizing Map (SOM) , 2014, 2014 International Conference on Recent Trends in Information Technology.

[8]  P. Balasubramanie,et al.  An Adaptive Hybrid Multi-level Intelligent Intrusion Detection System for Network Security , 2014 .

[9]  A. Praveena,et al.  Android Based Effective Search Engine Retrieval System Using Ontology , 2014 .

[10]  Jingsha He,et al.  Tuning FCM Parameters with AMOSA , 2016 .

[11]  Bhavin Shah,et al.  Intrusion Detection System using Self Organizing Map: A Survey , 2014 .

[12]  Mohammad Khubeb Siddiqui,et al.  Analysis of KDD CUP 99 Dataset using Clustering based Data Mining , 2013 .

[13]  G. Usha Devi,et al.  Fuzzy Based Intrusion Detection Systems in MANET , 2015 .

[14]  Biswajit Panja,et al.  Training of intelligent intrusion detection system using neuro fuzzy , 2014, 15th IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/Distributed Computing (SNPD).

[15]  Kristopher Kendall,et al.  A Database of Computer Attacks for the Evaluation of Intrusion Detection Systems , 1999 .

[16]  R. K. Challa,et al.  Novel intrusion detection system integrating layered framework with neural network , 2013, 2013 3rd IEEE International Advance Computing Conference (IACC).

[17]  Kwangjo Kim,et al.  Another Fuzzy Anomaly Detection System Based on Ant Clustering Algorithm , 2017, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..

[18]  Yun Wang,et al.  Statistical Techniques for Network Security: Modern Statistically-Based Intrusion Detection and Protection , 2008 .

[19]  Deepak Singh Tomar,et al.  DEVELOPMENT OF ADAPTIVE NEURO-FUZZY INFERENCE SYSTEM BASED NETWORK INTRUSION DETECTION SYSTEM , 2013 .

[20]  Zikrija Avdagic,et al.  The effects of combined application of SOM, ANFIS and Subtractive Clustering in detecting intrusions in computer networks , 2014, 2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO).

[21]  A. Malathi,et al.  A Detailed Analysis on NSL-KDD Dataset Using Various Machine Learning Techniques for Intrusion Detection , 2013 .

[22]  S. Karthik,et al.  Classification Techniques for Intrusion Detection - An Overview , 2013 .