Evolving discrete-valued anomaly detectors for a network intrusion detection system using negative selection


Powers, Simon T. and He, Jun, (2006) Evolving discrete-valued anomaly detectors for a network intrusion detection system using negative selection Wang, Xue Z. and Li, Rui Fa (eds.) At the 6th UK Workshop on Computational Intelligence (UKCI'06). , pp. 41-48.

Download

[img] PDF 2006ukci.pdf - Other
Download (162kB)

Description/Abstract

Network intrusion detection is the problem of detecting unauthorised use of, or access to, computer systems over a network. One approach is anomaly detection, where deviations from a model of normal network activity are reported. The negative selection algorithm, inspired by the immune system, can be used to generate anomaly detectors. Previous work has applied a genetic algorithm to generate real-valued detectors. However, we argue that at least some discrete fields are required in detectors, e.g. the port number. The system reported in this paper evolves discrete-valued detectors, which we show are able to outperform real-valued detectors.

Item Type: Conference or Workshop Item (Paper)
Additional Information: Event Dates: 04/09/2006
Venue - Dates: the 6th UK Workshop on Computational Intelligence (UKCI'06), 2006-09-04
Related URLs:
Keywords: artificial immune system, intrusion detection, negative selection
Organisations: Electronics & Computer Science
ePrint ID: 264052
Date :
Date Event
2006Published
Date Deposited: 23 May 2007
Last Modified: 17 Apr 2017 19:44
Further Information:Google Scholar
URI: http://eprints.soton.ac.uk/id/eprint/264052

Actions (login required)

View Item View Item