Cyber-attacks are becoming more sophisticated and thereby presenting increasing challenges in accurately detecting intrusions. Failure to prevent the intrusions could degrade the credibility of security services, e.g. data confidentiality, integrity, and availability. Numerous intrusion detection methods have been proposed in the literature to tackle computer security threats, which can be broadly classified into Signature-based Intrusion Detection Systems (SIDS) and Anomaly-based Intrusion Detection Systems (AIDS). This survey paper presents a taxonomy of contemporary IDS, a comprehensive review of notable recent works, and an overview of the datasets commonly used for evaluation purposes. It also presents evasion techniques used by attackers to avoid detection and discusses future research challenges to counter such techniques so as to make computer systems more secure.
Abstract-Next generation heterogeneous wireless networks offer the end users with assurance of QoS inside each access network as well as during vertical handoff between them. For guaranteed QoS, the vertical handoff algorithm must be QoS aware, which cannot be achieved with the use of traditional RSS as the vertical handoff criteria. In this paper, we propose a novel vertical handoff algorithm which uses received SINR from various access networks as the handoff criteria. This algorithm consider the combined effects of SINR from different access networks with SINR value from one network being converted to equivalent SINR value to the target network, so the handoff algorithm can have the knowledge of achievable bandwidths from both access networks to make handoff decisions with QoS consideration. Analytical results confirm that the new SINR based vertical handoff algorithm can consistently offer the end user with maximum available bandwidth during vertical handoff contrary to the RSS based vertical handoff, whose performance differs under different network conditions. System level simulations also reveal the improvement of overall system throughputs using SINR based vertical handoff, comparing with the RSS based vertical handoff.
ObjectivesThe Teeth Tales trial aimed to establish a model for child oral health promotion for culturally diverse communities in Australia.DesignAn exploratory trial implementing a community-based child oral health promotion intervention for Australian families from migrant backgrounds. Mixed method, longitudinal evaluation.SettingThe intervention was based in Moreland, a culturally diverse locality in Melbourne, Australia.ParticipantsFamilies with 1–4-year-old children, self-identified as being from Iraqi, Lebanese or Pakistani backgrounds residing in Melbourne. Participants residing close to the intervention site were allocated to intervention.InterventionThe intervention was conducted over 5 months and comprised community oral health education sessions led by peer educators and follow-up health messages.Outcome measuresThis paper reports on the intervention impacts, process evaluation and descriptive analysis of health, knowledge and behavioural changes 18 months after baseline data collection.ResultsSignificant differences in the Debris Index (OR=0.44 (0.22 to 0.88)) and the Modified Gingival Index (OR=0.34 (0.19 to 0.61)) indicated increased tooth brushing and/or improved toothbrushing technique in the intervention group. An increased proportion of intervention parents, compared to those in the comparison group reported that they had been shown how to brush their child's teeth (OR=2.65 (1.49 to 4.69)). Process evaluation results highlighted the problems with recruitment and retention of the study sample (275 complete case families). The child dental screening encouraged involvement in the study, as did linking attendance with other community/cultural activities.ConclusionsThe Teeth Tales intervention was promising in terms of improving oral hygiene and parent knowledge of tooth brushing technique. Adaptations to delivery of the intervention are required to increase uptake and likely impact. A future cluster randomised controlled trial would provide strongest evidence of effectiveness if appropriate to the community, cultural and economic context.Trial registration numberAustralian New Zealand Clinical Trials Registry (ACTRN12611000532909).
Cyberttacks are becoming increasingly sophisticated, necessitating the efficient intrusion detection mechanisms to monitor computer resources and generate reports on anomalous or suspicious activities. Many Intrusion Detection Systems (IDSs) use a single classifier for identifying intrusions. Single classifier IDSs are unable to achieve high accuracy and low false alarm rates due to polymorphic, metamorphic, and zero-day behaviors of malware. In this paper, a Hybrid IDS (HIDS) is proposed by combining the C5 decision tree classifier and One Class Support Vector Machine (OC-SVM). HIDS combines the strengths of SIDS) and Anomaly-based Intrusion Detection System (AIDS). The SIDS was developed based on the C5.0 Decision tree classifier and AIDS was developed based on the one-class Support Vector Machine (SVM). This framework aims to identify both the well-known intrusions and zero-day attacks with high detection accuracy and low false-alarm rates. The proposed HIDS is evaluated using the benchmark datasets, namely, Network Security Laboratory-Knowledge Discovery in Databases (NSL-KDD) and Australian Defence Force Academy (ADFA) datasets. Studies show that the performance of HIDS is enhanced, compared to SIDS and AIDS in terms of detection rate and low false-alarm rates.
The Internet of Things (IoT) has been rapidly evolving towards making a greater impact on everyday life to large industrial systems. Unfortunately, this has attracted the attention of cybercriminals who made IoT a target of malicious activities, opening the door to a possible attack to the end nodes. Due to the large number and diverse types of IoT devices, it is a challenging task to protect the IoT infrastructure using a traditional intrusion detection system. To protect IoT devices, a novel ensemble Hybrid Intrusion Detection System (HIDS) is proposed by combining a C5 classifier and One Class Support Vector Machine classifier. HIDS combines the advantages of Signature Intrusion Detection System (SIDS) and Anomaly-based Intrusion Detection System (AIDS). The aim of this framework is to detect both the well-known intrusions and zero-day attacks with high detection accuracy and low false-alarm rates. The proposed HIDS is evaluated using the Bot-IoT dataset, which includes legitimate IoT network traffic and several types of attacks. Experiments show that the proposed hybrid IDS provide higher detection rate and lower false positive rate compared to the SIDS and AIDS techniques.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.