AA-HMM: An Anti-Adversarial Hidden Markov Model for Network-Based Intrusion Detection

Song, Chongya; Pons, Alexander P.; Yen, Kang K.

doi:10.3390/app8122421

Cited by 9 publications

(3 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The K -means (Alyaseen et al, 2017), the AE -CGAN -RF (Jiadong et al, 2019), AA -HMM (Song et al, 2018), MDPCA-DBN (Yang et al, 2019), GA (Ying-Wu et al, 2010), and the NMIFS MOP -AQGA algorithm proposed in this paper are used to train and test with experimental data set. The ROC curves on five kinds of data set are shown in Figure 4.…”

Section: The Confusion Matrixmentioning

confidence: 99%

“…They used the Modified Density Peak Clustering Algorithm and Deep Networks to reduce the size of the training set, solve the imbalance of sample, and improve the efficiency of detection. Song et al (2018) proposed an anti-adversarial hidden markov model for network-based intrusion detection (AA-HMM). However those algorithms had lower self-adaptability, lower detection rate, and higher false alert rate for small samples sets.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Intrusion Detection Using Normalized Mutual Information Feature Selection and Parallel Quantum Genetic Algorithm

Zhang

Hao

2022

International Journal on Semantic Web and Information Systems

View full text Add to dashboard Cite

This paper presents a detection algorithm using normalized mutual information feature selection and cooperative evolution of multiple operators based on adaptive parallel quantum genetic algorithm (NMIFS MOP- AQGA). The proposed algorithm is to address the problems that the intrusion detection system (IDS) has lower the detection speed, less adaptability and lower detection accuracy. In order to achieve an effective reduction for high-dimensional feature data, the NMIFS method is used to select the best feature combination. The best features are sent to the MOP- AQGA classifier for learning and training, and the intrusion detectors are obtained. The data are fed into the detection algorithm to ultimately generate accurate detection results. The experimental results on real abnormal data demonstrate that the NMIFS MOP- AQGA method has higher detection accuracy, lower false negative rate and higher adaptive performance than the existing detection methods, especially for small samples sets.

show abstract

Section: The Confusion Matrixmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Intrusion Detection Using Normalized Mutual Information Feature Selection and Parallel Quantum Genetic Algorithm

Zhang

Hao

2022

International Journal on Semantic Web and Information Systems

View full text Add to dashboard Cite

show abstract

“…Yang et al (2019) proposed an effective IDS using the Modified Density Peak Clustering Algorithm and Deep Belief Networks (MDPCA-DBN); they used the MDPCA and A-DBN to reduce the size of the training set, solve the imbalance of samples, and therefore improve the detection efficiency. Song et al (2018) proposed an anti-adversarial hidden Markov model for network-based intrusion detection (AA-HMM). Ehsan et al (2021) proposed a new complex mixed artificial immune intrusion detection system; the system integrated the negative selection algorithm (NSA) and the DCA for detectors.…”

Section: Introductionmentioning

confidence: 99%

An Intrusion Detection System Based on Normalized Mutual Information Antibodies Feature Selection and Adaptive Quantum Artificial Immune System

Zhang

Hao

2022

International Journal on Semantic Web and Information Systems

View full text Add to dashboard Cite

The intrusion detection system (IDS) has lower speed, less adaptability and lower detection accuracy especially for small samples sets. This paper presents a detection model based on normalized mutual antibodies information feature selection and adaptive quantum artificial immune with cooperative evolution of multiple operators (NMAIFS MOP-AQAI). First, for a high intrusion speed, the NMAIFS is used to achieve an effective reduction for high-dimensional features. Then, the best feature vectors are sent to the MOP-AQAI classifier, in which, vaccination strategy, the quantum computing, and cooperative evolution of multiple operators are adopted to generate excellent detectors. Lastly, the data is fed into NMAIFS MOP-AQAI and ultimately generates accurate detection results. The experimental results on real abnormal data demonstrate that the NMAIFS MOP-AQAI has higher detection accuracy, lower false negative rate and a higher adaptive performance than the existing anomaly detection methods, especially for small samples sets.

show abstract

Seven Pitfalls of Using Data Science in Cybersecurity

Johnstone

Peacock²

2020

Data Science in Cybersecurity and Cyberthreat Intelligence

View full text Add to dashboard Cite

AA-HMM: An Anti-Adversarial Hidden Markov Model for Network-Based Intrusion Detection

Cited by 9 publications

References 27 publications

Intrusion Detection Using Normalized Mutual Information Feature Selection and Parallel Quantum Genetic Algorithm

Intrusion Detection Using Normalized Mutual Information Feature Selection and Parallel Quantum Genetic Algorithm

An Intrusion Detection System Based on Normalized Mutual Information Antibodies Feature Selection and Adaptive Quantum Artificial Immune System

Seven Pitfalls of Using Data Science in Cybersecurity

Contact Info

Product

Resources

About