A Classified Method Based on Support Vector Machine for Grid Computing Intrusion Detection
暂无分享,去创建一个
A novel ID method based on Support Vector Machine (SVM) is proposed to solve the classification problem for the large amount of raw intrusion event dataset of the grid computing environment. A new radial basic function (RBF), based on heterogeneous value difference metric (HVDM) of heterogeneous datasets, is developed. Two different types of SVM, Supervised C_SVM and unsupervised One_Class SVM algorithms with kernel function, are applied to detect the anomaly network connection records. The experimental results of our method on the corpus of data collected by Lincoln Labs at MIT for an intrusion detection system evaluation sponsored by the U.S. Defense Advanced Research Projects Agency (DARPA) shows that the proposed method is feasible and effective.
[1] Vladimir N. Vapnik,et al. The Nature of Statistical Learning Theory , 2000, Statistics for Engineering and Information Science.
[2] Bernhard Schölkopf,et al. Estimating the Support of a High-Dimensional Distribution , 2001, Neural Computation.
[3] Tony R. Martinez,et al. Improved Heterogeneous Distance Functions , 1996, J. Artif. Intell. Res..
[4] Stefan Axelsson,et al. Intrusion Detection Systems: A Survey and Taxonomy , 2002 .