Fuzziness based semi-supervised learning approach for intrusion detection system
Countering cyber threats, especially attack detection, is a challenging area of research in the field of information assurance. Intruders use polymorphic mechanisms to masquerade the attack payload and evade the detection techniques. Many supervised and unsupervised learning approaches from the fiel...
Gespeichert in:
| Veröffentlicht in: | Information sciences 2017-02, Vol.378, p.484-497 |
|---|---|
| Hauptverfasser: | , , , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 497 |
|---|---|
| container_issue | |
| container_start_page | 484 |
| container_title | Information sciences |
| container_volume | 378 |
| creator | Ashfaq, Rana Aamir Raza Wang, Xi-Zhao Huang, Joshua Zhexue Abbas, Haider He, Yu-Lin |
| description | Countering cyber threats, especially attack detection, is a challenging area of research in the field of information assurance. Intruders use polymorphic mechanisms to masquerade the attack payload and evade the detection techniques. Many supervised and unsupervised learning approaches from the field of machine learning and pattern recognition have been used to increase the efficacy of intrusion detection systems (IDSs). Supervised learning approaches use only labeled samples to train a classifier, but obtaining sufficient labeled samples is cumbersome, and requires the efforts of domain experts. However, unlabeled samples can easily be obtained in many real world problems. Compared to supervised learning approaches, semi-supervised learning (SSL) addresses this issue by considering large amount of unlabeled samples together with the labeled samples to build a better classifier. This paper proposes a novel fuzziness based semi-supervised learning approach by utilizing unlabeled samples assisted with supervised learning algorithm to improve the classifier’s performance for the IDSs. A single hidden layer feed-forward neural network (SLFN) is trained to output a fuzzy membership vector, and the sample categorization (low, mid, and high fuzziness categories) on unlabeled samples is performed using the fuzzy quantity. The classifier is retrained after incorporating each category separately into the original training set. The experimental results using this technique of intrusion detection on the NSL-KDD dataset show that unlabeled samples belonging to low and high fuzziness groups make major contributions to improve the classifier’s performance compared to existing classifiers e.g., naive bayes, support vector machine, random forests, etc. |
| doi_str_mv | 10.1016/j.ins.2016.04.019 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_miscellaneous_1864550651</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><els_id>S0020025516302547</els_id><sourcerecordid>1864550651</sourcerecordid><originalsourceid>FETCH-LOGICAL-c378t-2e08e83fb1247ef9a9a6c9ee058622ba1542cfacba53410a11707f8523cb25a03</originalsourceid><addsrcrecordid>eNp9kM1OwzAQhC0EEqXwANxy5JKwdmInESdUUUCqBAc4W46zAVf5Kd6kUvv0OCpnTjsrzax2PsZuOSQcuLrfJq6nRASZQJYAL8_Yghe5iJUo-TlbAAiIQUh5ya6ItgCQ5Uot2Pt6Oh5dj0RRZQjriLBzMU079Hs37y0a37v-KzK7nR-M_Y6awUeuH_1EbuijGke046zoQCN21-yiMS3hzd9css_108fqJd68Pb-uHjexTfNijAVCgUXaVFxkOTalKY2yJSLIQglRGS4zYRtjKyPTjIPhPIe8KaRIbSWkgXTJ7k53w1c_E9KoO0cW29b0OEykeaEyKUFJHqz8ZLV-IPLY6J13nfEHzUHP9PRWB3p6pqch04FeyDycMhg67B16TdZhb7F2PvTV9eD-Sf8CJH15Hw</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>1864550651</pqid></control><display><type>article</type><title>Fuzziness based semi-supervised learning approach for intrusion detection system</title><source>Elsevier ScienceDirect Journals Complete</source><creator>Ashfaq, Rana Aamir Raza ; Wang, Xi-Zhao ; Huang, Joshua Zhexue ; Abbas, Haider ; He, Yu-Lin</creator><creatorcontrib>Ashfaq, Rana Aamir Raza ; Wang, Xi-Zhao ; Huang, Joshua Zhexue ; Abbas, Haider ; He, Yu-Lin</creatorcontrib><description>Countering cyber threats, especially attack detection, is a challenging area of research in the field of information assurance. Intruders use polymorphic mechanisms to masquerade the attack payload and evade the detection techniques. Many supervised and unsupervised learning approaches from the field of machine learning and pattern recognition have been used to increase the efficacy of intrusion detection systems (IDSs). Supervised learning approaches use only labeled samples to train a classifier, but obtaining sufficient labeled samples is cumbersome, and requires the efforts of domain experts. However, unlabeled samples can easily be obtained in many real world problems. Compared to supervised learning approaches, semi-supervised learning (SSL) addresses this issue by considering large amount of unlabeled samples together with the labeled samples to build a better classifier. This paper proposes a novel fuzziness based semi-supervised learning approach by utilizing unlabeled samples assisted with supervised learning algorithm to improve the classifier’s performance for the IDSs. A single hidden layer feed-forward neural network (SLFN) is trained to output a fuzzy membership vector, and the sample categorization (low, mid, and high fuzziness categories) on unlabeled samples is performed using the fuzzy quantity. The classifier is retrained after incorporating each category separately into the original training set. The experimental results using this technique of intrusion detection on the NSL-KDD dataset show that unlabeled samples belonging to low and high fuzziness groups make major contributions to improve the classifier’s performance compared to existing classifiers e.g., naive bayes, support vector machine, random forests, etc.</description><identifier>ISSN: 0020-0255</identifier><identifier>EISSN: 1872-6291</identifier><identifier>DOI: 10.1016/j.ins.2016.04.019</identifier><language>eng</language><publisher>Elsevier Inc</publisher><subject>Categories ; Classifiers ; Computer information security ; Construction ; Divide-and-conquer strategy ; Fuzziness ; Fuzzy ; Intrusion ; Intrusion detection ; Machine learning ; Random weight neural network ; Semi-supervised learning ; Training</subject><ispartof>Information sciences, 2017-02, Vol.378, p.484-497</ispartof><rights>2016 Elsevier Inc.</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c378t-2e08e83fb1247ef9a9a6c9ee058622ba1542cfacba53410a11707f8523cb25a03</citedby><cites>FETCH-LOGICAL-c378t-2e08e83fb1247ef9a9a6c9ee058622ba1542cfacba53410a11707f8523cb25a03</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://www.sciencedirect.com/science/article/pii/S0020025516302547$$EHTML$$P50$$Gelsevier$$H</linktohtml><link.rule.ids>314,776,780,3537,27901,27902,65534</link.rule.ids></links><search><creatorcontrib>Ashfaq, Rana Aamir Raza</creatorcontrib><creatorcontrib>Wang, Xi-Zhao</creatorcontrib><creatorcontrib>Huang, Joshua Zhexue</creatorcontrib><creatorcontrib>Abbas, Haider</creatorcontrib><creatorcontrib>He, Yu-Lin</creatorcontrib><title>Fuzziness based semi-supervised learning approach for intrusion detection system</title><title>Information sciences</title><description>Countering cyber threats, especially attack detection, is a challenging area of research in the field of information assurance. Intruders use polymorphic mechanisms to masquerade the attack payload and evade the detection techniques. Many supervised and unsupervised learning approaches from the field of machine learning and pattern recognition have been used to increase the efficacy of intrusion detection systems (IDSs). Supervised learning approaches use only labeled samples to train a classifier, but obtaining sufficient labeled samples is cumbersome, and requires the efforts of domain experts. However, unlabeled samples can easily be obtained in many real world problems. Compared to supervised learning approaches, semi-supervised learning (SSL) addresses this issue by considering large amount of unlabeled samples together with the labeled samples to build a better classifier. This paper proposes a novel fuzziness based semi-supervised learning approach by utilizing unlabeled samples assisted with supervised learning algorithm to improve the classifier’s performance for the IDSs. A single hidden layer feed-forward neural network (SLFN) is trained to output a fuzzy membership vector, and the sample categorization (low, mid, and high fuzziness categories) on unlabeled samples is performed using the fuzzy quantity. The classifier is retrained after incorporating each category separately into the original training set. The experimental results using this technique of intrusion detection on the NSL-KDD dataset show that unlabeled samples belonging to low and high fuzziness groups make major contributions to improve the classifier’s performance compared to existing classifiers e.g., naive bayes, support vector machine, random forests, etc.</description><subject>Categories</subject><subject>Classifiers</subject><subject>Computer information security</subject><subject>Construction</subject><subject>Divide-and-conquer strategy</subject><subject>Fuzziness</subject><subject>Fuzzy</subject><subject>Intrusion</subject><subject>Intrusion detection</subject><subject>Machine learning</subject><subject>Random weight neural network</subject><subject>Semi-supervised learning</subject><subject>Training</subject><issn>0020-0255</issn><issn>1872-6291</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2017</creationdate><recordtype>article</recordtype><recordid>eNp9kM1OwzAQhC0EEqXwANxy5JKwdmInESdUUUCqBAc4W46zAVf5Kd6kUvv0OCpnTjsrzax2PsZuOSQcuLrfJq6nRASZQJYAL8_Yghe5iJUo-TlbAAiIQUh5ya6ItgCQ5Uot2Pt6Oh5dj0RRZQjriLBzMU079Hs37y0a37v-KzK7nR-M_Y6awUeuH_1EbuijGke046zoQCN21-yiMS3hzd9css_108fqJd68Pb-uHjexTfNijAVCgUXaVFxkOTalKY2yJSLIQglRGS4zYRtjKyPTjIPhPIe8KaRIbSWkgXTJ7k53w1c_E9KoO0cW29b0OEykeaEyKUFJHqz8ZLV-IPLY6J13nfEHzUHP9PRWB3p6pqch04FeyDycMhg67B16TdZhb7F2PvTV9eD-Sf8CJH15Hw</recordid><startdate>20170201</startdate><enddate>20170201</enddate><creator>Ashfaq, Rana Aamir Raza</creator><creator>Wang, Xi-Zhao</creator><creator>Huang, Joshua Zhexue</creator><creator>Abbas, Haider</creator><creator>He, Yu-Lin</creator><general>Elsevier Inc</general><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope></search><sort><creationdate>20170201</creationdate><title>Fuzziness based semi-supervised learning approach for intrusion detection system</title><author>Ashfaq, Rana Aamir Raza ; Wang, Xi-Zhao ; Huang, Joshua Zhexue ; Abbas, Haider ; He, Yu-Lin</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c378t-2e08e83fb1247ef9a9a6c9ee058622ba1542cfacba53410a11707f8523cb25a03</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2017</creationdate><topic>Categories</topic><topic>Classifiers</topic><topic>Computer information security</topic><topic>Construction</topic><topic>Divide-and-conquer strategy</topic><topic>Fuzziness</topic><topic>Fuzzy</topic><topic>Intrusion</topic><topic>Intrusion detection</topic><topic>Machine learning</topic><topic>Random weight neural network</topic><topic>Semi-supervised learning</topic><topic>Training</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Ashfaq, Rana Aamir Raza</creatorcontrib><creatorcontrib>Wang, Xi-Zhao</creatorcontrib><creatorcontrib>Huang, Joshua Zhexue</creatorcontrib><creatorcontrib>Abbas, Haider</creatorcontrib><creatorcontrib>He, Yu-Lin</creatorcontrib><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>Information sciences</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Ashfaq, Rana Aamir Raza</au><au>Wang, Xi-Zhao</au><au>Huang, Joshua Zhexue</au><au>Abbas, Haider</au><au>He, Yu-Lin</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Fuzziness based semi-supervised learning approach for intrusion detection system</atitle><jtitle>Information sciences</jtitle><date>2017-02-01</date><risdate>2017</risdate><volume>378</volume><spage>484</spage><epage>497</epage><pages>484-497</pages><issn>0020-0255</issn><eissn>1872-6291</eissn><abstract>Countering cyber threats, especially attack detection, is a challenging area of research in the field of information assurance. Intruders use polymorphic mechanisms to masquerade the attack payload and evade the detection techniques. Many supervised and unsupervised learning approaches from the field of machine learning and pattern recognition have been used to increase the efficacy of intrusion detection systems (IDSs). Supervised learning approaches use only labeled samples to train a classifier, but obtaining sufficient labeled samples is cumbersome, and requires the efforts of domain experts. However, unlabeled samples can easily be obtained in many real world problems. Compared to supervised learning approaches, semi-supervised learning (SSL) addresses this issue by considering large amount of unlabeled samples together with the labeled samples to build a better classifier. This paper proposes a novel fuzziness based semi-supervised learning approach by utilizing unlabeled samples assisted with supervised learning algorithm to improve the classifier’s performance for the IDSs. A single hidden layer feed-forward neural network (SLFN) is trained to output a fuzzy membership vector, and the sample categorization (low, mid, and high fuzziness categories) on unlabeled samples is performed using the fuzzy quantity. The classifier is retrained after incorporating each category separately into the original training set. The experimental results using this technique of intrusion detection on the NSL-KDD dataset show that unlabeled samples belonging to low and high fuzziness groups make major contributions to improve the classifier’s performance compared to existing classifiers e.g., naive bayes, support vector machine, random forests, etc.</abstract><pub>Elsevier Inc</pub><doi>10.1016/j.ins.2016.04.019</doi><tpages>14</tpages></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0020-0255 |
| ispartof | Information sciences, 2017-02, Vol.378, p.484-497 |
| issn | 0020-0255 1872-6291 |
| language | eng |
| recordid | cdi_proquest_miscellaneous_1864550651 |
| source | Elsevier ScienceDirect Journals Complete |
| subjects | Categories Classifiers Computer information security Construction Divide-and-conquer strategy Fuzziness Fuzzy Intrusion Intrusion detection Machine learning Random weight neural network Semi-supervised learning Training |
| title | Fuzziness based semi-supervised learning approach for intrusion detection system |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-18T21%3A12%3A54IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Fuzziness%20based%20semi-supervised%20learning%20approach%20for%20intrusion%20detection%20system&rft.jtitle=Information%20sciences&rft.au=Ashfaq,%20Rana%20Aamir%20Raza&rft.date=2017-02-01&rft.volume=378&rft.spage=484&rft.epage=497&rft.pages=484-497&rft.issn=0020-0255&rft.eissn=1872-6291&rft_id=info:doi/10.1016/j.ins.2016.04.019&rft_dat=%3Cproquest_cross%3E1864550651%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=1864550651&rft_id=info:pmid/&rft_els_id=S0020025516302547&rfr_iscdi=true |