Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System
Cybercrime is growing at a rapid pace, and its techniques are becoming more sophisticated. In order to actively cope with such threats, new approaches based on machine learning and requiring less administrator intervention have been proposed, but there are still many technical difficulties in detect...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2021-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/9448077/ |
| _version_ | 1819069438436048896 |
|---|---|
| author | Taehoon Kim Wooguil Pak |
| author_facet | Taehoon Kim Wooguil Pak |
| author_sort | Taehoon Kim |
| collection | DOAJ |
| description | Cybercrime is growing at a rapid pace, and its techniques are becoming more sophisticated. In order to actively cope with such threats, new approaches based on machine learning and requiring less administrator intervention have been proposed, but there are still many technical difficulties in detecting security attacks in real time. To solve this problem, we propose a new machine learning-based real-time intrusion detection algorithm. Unlike the existing approaches, the one proposed can detect the presence of an attack every time a packet is received, enabling real-time detection. In addition, our algorithm effectively reduces the system load, which may significantly increase from real-time detection, compared to non-real-time detection. In the algorithm, the increase in the number of memory accesses can be minimized (to below 30 %) compared to conventional methods. Since the proposed method is pure software-based approach, it has excellent scalability and flexibility against various attacks. Therefore, the proposed method cannot support the high classification performance of the hardware-based method but also the high flexibility of the software-based method simultaneously, it can effectively detect and prevent various cyber-attacks. |
| first_indexed | 2024-12-21T16:50:03Z |
| format | Article |
| id | doaj.art-0a56ff8f9b084d1fac225ac026becb45 |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-12-21T16:50:03Z |
| publishDate | 2021-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-0a56ff8f9b084d1fac225ac026becb452022-12-21T18:56:54ZengIEEEIEEE Access2169-35362021-01-019838068381710.1109/ACCESS.2021.30872019448077Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection SystemTaehoon Kim0Wooguil Pak1https://orcid.org/0000-0002-9551-7373Department of Information and Communication Engineering, Yeungnam University, Gyeongsan, South KoreaDepartment of Information and Communication Engineering, Yeungnam University, Gyeongsan, South KoreaCybercrime is growing at a rapid pace, and its techniques are becoming more sophisticated. In order to actively cope with such threats, new approaches based on machine learning and requiring less administrator intervention have been proposed, but there are still many technical difficulties in detecting security attacks in real time. To solve this problem, we propose a new machine learning-based real-time intrusion detection algorithm. Unlike the existing approaches, the one proposed can detect the presence of an attack every time a packet is received, enabling real-time detection. In addition, our algorithm effectively reduces the system load, which may significantly increase from real-time detection, compared to non-real-time detection. In the algorithm, the increase in the number of memory accesses can be minimized (to below 30 %) compared to conventional methods. Since the proposed method is pure software-based approach, it has excellent scalability and flexibility against various attacks. Therefore, the proposed method cannot support the high classification performance of the hardware-based method but also the high flexibility of the software-based method simultaneously, it can effectively detect and prevent various cyber-attacks.https://ieeexplore.ieee.org/document/9448077/Hybrid classifiernetwork attacknetwork intrusion detectionthree levelreal-time detection |
| spellingShingle | Taehoon Kim Wooguil Pak Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System IEEE Access Hybrid classifier network attack network intrusion detection three level real-time detection |
| title | Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System |
| title_full | Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System |
| title_fullStr | Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System |
| title_full_unstemmed | Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System |
| title_short | Hybrid Classification for High-Speed and High-Accuracy Network Intrusion Detection System |
| title_sort | hybrid classification for high speed and high accuracy network intrusion detection system |
| topic | Hybrid classifier network attack network intrusion detection three level real-time detection |
| url | https://ieeexplore.ieee.org/document/9448077/ |
| work_keys_str_mv | AT taehoonkim hybridclassificationforhighspeedandhighaccuracynetworkintrusiondetectionsystem AT wooguilpak hybridclassificationforhighspeedandhighaccuracynetworkintrusiondetectionsystem |