Implementation of an intrusion detection system based on self organizing map
Implementación de un sistema de detección de intrusos basado en un mapa auto organizado.
Date
2015-01-31
2015-01-31
Author
De la Hoz, Emiro
Ortiz García, Andrés
Ortega Lopera, Julio
De La Hoz Correa, Eduardo Miguel
Mendoza Palechor, Fabio Enrique
Metadata
Show full item record
Show full item record
Abstract
The main purpose of this study is to identify a methodology to validate the effectiveness of an Intrusion Detection Systems proposed in three phases (selection, training and classification) using FDR to feature selection and Self Organizing Maps to training-classification. Therefore, initially are covered basics introductory in the first four items, related to the input dataset, the intrusion detection system and the metrics that are necessary to evaluate the IDS, the feature extraction technique FDR and the funcionality about the self-organizing map (SOM). Later in the methodology Item, in the body of the paper, a functional model proposed to described the intrusion detection, such model is validated from the comparation of metrics in simulation develops enviroments. Finally concluded that the detection rates obtained by the proposed functional model are: sensitivity of 97.39% (fits correctly identified as attacks) and a specificityof 62.73% (normal traffic correctly identified as normal traffic) using only 17 features of the dataset input.These results are compared with other simulating scenarios different, consulted from the documentary sources, from which it is suggested to integrate at the proposed model other techniques for training and classification processes to optimize the intrusion detection model.
Collections