Shallow and deep networks intrusion detection system: a taxonomy and survey

Research output: Working paper

Abstract

Intrusion detection has attracted a considerable interest from researchers and industries. The community, after many years of research, still faces the problem of building reliable and efficient IDS that are capable of handling large quantities of data, with changing patterns in real time situations. The work presented in this manuscript classifies intrusion detection systems (IDS). Moreover, a taxonomy and survey of shallow and deep networks intrusion detection systems is presented based on previous and current works. This taxonomy and survey reviews machine learning techniques and their performance in detecting anomalies. Feature selection which influences the effectiveness of machine learning (ML) IDS is discussed to explain the role of feature selection in the classification and training phase of ML IDS. Finally, a discussion of the false and true positive alarm rates is presented to help researchers model reliable and efficient machine learning based intrusion detection systems.
LanguageEnglish
Place of PublicationIthaca, N.Y.
Number of pages43
Publication statusPublished - 9 Jan 2017

Fingerprint

Intrusion detection
Taxonomies
Learning systems
Feature extraction
Industry

Keywords

  • intrusion detection
  • machine learning
  • machine learning intrusion detection systems
  • ML IDS

Cite this

@techreport{b9d1efb7b3f64e5385885bbe47571ff7,
title = "Shallow and deep networks intrusion detection system: a taxonomy and survey",
abstract = "Intrusion detection has attracted a considerable interest from researchers and industries. The community, after many years of research, still faces the problem of building reliable and efficient IDS that are capable of handling large quantities of data, with changing patterns in real time situations. The work presented in this manuscript classifies intrusion detection systems (IDS). Moreover, a taxonomy and survey of shallow and deep networks intrusion detection systems is presented based on previous and current works. This taxonomy and survey reviews machine learning techniques and their performance in detecting anomalies. Feature selection which influences the effectiveness of machine learning (ML) IDS is discussed to explain the role of feature selection in the classification and training phase of ML IDS. Finally, a discussion of the false and true positive alarm rates is presented to help researchers model reliable and efficient machine learning based intrusion detection systems.",
keywords = "intrusion detection, machine learning, machine learning intrusion detection systems, ML IDS",
author = "Elike Hodo and Xavier Bellekens and Andrew Hamilton and Christos Tachtatzis and Robert Atkinson",
year = "2017",
month = "1",
day = "9",
language = "English",
type = "WorkingPaper",

}

TY - UNPB

T1 - Shallow and deep networks intrusion detection system

T2 - a taxonomy and survey

AU - Hodo, Elike

AU - Bellekens, Xavier

AU - Hamilton, Andrew

AU - Tachtatzis, Christos

AU - Atkinson, Robert

PY - 2017/1/9

Y1 - 2017/1/9

N2 - Intrusion detection has attracted a considerable interest from researchers and industries. The community, after many years of research, still faces the problem of building reliable and efficient IDS that are capable of handling large quantities of data, with changing patterns in real time situations. The work presented in this manuscript classifies intrusion detection systems (IDS). Moreover, a taxonomy and survey of shallow and deep networks intrusion detection systems is presented based on previous and current works. This taxonomy and survey reviews machine learning techniques and their performance in detecting anomalies. Feature selection which influences the effectiveness of machine learning (ML) IDS is discussed to explain the role of feature selection in the classification and training phase of ML IDS. Finally, a discussion of the false and true positive alarm rates is presented to help researchers model reliable and efficient machine learning based intrusion detection systems.

AB - Intrusion detection has attracted a considerable interest from researchers and industries. The community, after many years of research, still faces the problem of building reliable and efficient IDS that are capable of handling large quantities of data, with changing patterns in real time situations. The work presented in this manuscript classifies intrusion detection systems (IDS). Moreover, a taxonomy and survey of shallow and deep networks intrusion detection systems is presented based on previous and current works. This taxonomy and survey reviews machine learning techniques and their performance in detecting anomalies. Feature selection which influences the effectiveness of machine learning (ML) IDS is discussed to explain the role of feature selection in the classification and training phase of ML IDS. Finally, a discussion of the false and true positive alarm rates is presented to help researchers model reliable and efficient machine learning based intrusion detection systems.

KW - intrusion detection

KW - machine learning

KW - machine learning intrusion detection systems

KW - ML IDS

UR - https://arxiv.org/abs/1701.02145

M3 - Working paper

BT - Shallow and deep networks intrusion detection system

CY - Ithaca, N.Y.

ER -