MLH-IDS: A Multi-Level Hybrid Intrusion Detection Method

Gogoi, Prasanta; Bhattacharyya, Dhruba K.; Borah, Bhogeswar; Kalita, Jugal

doi:10.1093/comjnl/bxt044

Cited by 63 publications

(40 citation statements)

References 46 publications

(38 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The multiple One-class SVM models are trained by disjoint normal training data subsets, which are decomposed by the misuse detection component. Furthermore, in the multi-level hybrid intrusion detection method of [17], three levels of detection respectively built by a supervised, an unsupervised and an outlier-based method are presented. In general, this type of hybrid approach is designed for a high detection rate.…”

Section: Related Studiesmentioning

confidence: 99%

A two-level hybrid approach for intrusion detection

et al. 2016

View full text Add to dashboard Cite

Section: Related Studiesmentioning

confidence: 99%

A two-level hybrid approach for intrusion detection

et al. 2016

View full text Add to dashboard Cite

“…Thereafter, all related information was extracted using tshark (2013), which is a terminal-based version of wireshark that was used to extract 11 features from the TCP packets (Table 2). The features were chosen from numerous network features in the packet-level features of the TUIDS intrusion dataset (Gogoi 2013). Above all, the main challenge in feature selection was finding the most relevant features that led to the highest true positive rate.…”

Section: Feature Selection and Extraction Phasementioning

confidence: 99%

Evaluation of machine learning classifiers for mobile malware detection

et al. 2014

View full text Add to dashboard Cite

Mobile devices have become a significant part of people's lives, leading to an increasing number of users involved with such technology. The rising number of users invites hackers to generate malicious applications. Besides, the security of sensitive data available on mobile devices is taken lightly. Relying on currently developed approaches is not sufficient, given that intelligent malware keeps modifying rapidly and as a result becomes more difficult to detect. In this paper, we propose an alternative solution to evaluating malware detection using the anomaly-based approach with machine learning classifiers. Among the various network traffic features, the four categories selected are basic information, content based, time based and connection based. The evaluation utilizes two datasets: public (i.e. MalGenome) and private (i.e. self-collected). Based on the evaluation results, both the Bayes network and random forest classifiers produced more accurate readings, with a 99.97 % true-positive rate (TPR) as opposed to the multi-layer perceptron with only 93.03 % on the MalGenome dataset. However, this experiment revealed that the k-nearest neighbor classifier efficiently detected the latest Android malware with an 84.57 % truepositive rate higher than other classifiers. Communicated by V. Loia.

show abstract

“…Multiple intrusion detection approaches can be simultaneously deployed based on the security demands . The purpose of combining two or more techniques is to design new intrusion processes by taking advantages of different techniques.…”

Section: Intrusion Detection Systemsmentioning

confidence: 99%

Intrusion detection techniques for mobile cloud computing in heterogeneous 5G

Gai

Qiu

Tao

et al. 2015

Security Comm. Networks

148

View full text Add to dashboard Cite

Mobile cloud computing is applied in multiple industries to obtain cloud‐based services by leveraging mobile technologies. With the development of the wireless networks, defending threats from wireless communications have been playing a remarkable role in the Web security domain. Intrusion detection system (IDS) is an efficient approach for protecting wireless communications in the Fifth Generation (5G) context. In this paper, we identify and summarize the main techniques being implemented in IDSs and mobile cloud computing with an analysis of the challenges for each technique. Addressing the security issue, we propose a higher level framework of implementing secure mobile cloud computing by adopting IDS techniques for applying mobile cloud‐based solutions in 5G networks. On the basis of the reviews and synthesis, we conclude that the implementation of mobile cloud computing can be secured by the proposed framework because it will provide well‐protected Web services and adaptable IDSs in the complicated heterogeneous 5G environment. Copyright © 2015 John Wiley & Sons, Ltd.

show abstract

MLH-IDS: A Multi-Level Hybrid Intrusion Detection Method

Cited by 63 publications

References 46 publications

A two-level hybrid approach for intrusion detection

A two-level hybrid approach for intrusion detection

Evaluation of machine learning classifiers for mobile malware detection

Intrusion detection techniques for mobile cloud computing in heterogeneous 5G

Contact Info

Product

Resources

About