Growing hierarchical self-organizing map for alarm filtering in network intrusion detection systems

被引：0

作者：

Faour, Ahmad ^{[1
]}

Leray, Philippe ^{[1
]}

Eter, Bassam ^{[2
]}

机构：

[1] INSA Rouen, Lab LITIS, EA 4051, Rouen, France

[2] Lebanese Univ, Beirut, Lebanon

来源：

NEW TECHNOLOGIES, MOBILITY AND SECURITY | 2007年

关键词：

D O I：

10.1007/978-1-4020-6270-4_58

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

It is a well-known problem that intrusion detection systems overload their human operators by triggering thousands of alarms per day. This paper presents a new approach for handling intrusion detection alarms more efficiently. Self-Organizing Map (SOM) and Growing Hierarchical Self-Organizing Map (GHSOM) are used to discover interest patterns, signs of potential real attack scenarios aiming each machine in the network. GHSOM addresses two main limits of SOM which are caused, on the one hand, by the static architecture of this model, as well as, on the other hand, by the limited capabilities for the representation of hierarchical relations of the data. The experiments conducted on several logs extracted from the SNORT NIDS, confirm that the GHSOM can form an adaptive architecture, which grows in size and depth during its training process, thus to unfold the hierarchical structure of the analyzed logs of alerts

引用

页码：631 / 631

页数：1

共 50 条

[21] Spam Detection Based on a Hierarchical Self-Organizing Map
Jose Palomo, Esteban
Dominguez, Enrique
Marcos Luque, Rafael
Munoz, Jose
EMERGING INTELLIGENT COMPUTING TECHNOLOGY AND APPLICATIONS: WITH ASPECTS OF ARTIFICIAL INTELLIGENCE, 2009, 5755 : 30 - 37
[22] Uncovering hierarchical structure in data using the growing hierarchical self-organizing map
Dittenbach, M
Rauber, A
Merkl, D
NEUROCOMPUTING, 2002, 48 : 199 - 216
[23] Comparison of visualization of optimal clustering using self-organizing map and growing hierarchical self-organizing map in cellular manufacturing system
Chattopadhyay, Manojit
Dan, Pranab K.
Mazumdar, Sitanath
APPLIED SOFT COMPUTING, 2014, 22 : 528 - 543
[24] The Growing Hierarchical Neural Gas Self-Organizing Neural Network
Palomo, Esteban J.
Lopez-Rubio, Ezequiel
IEEE TRANSACTIONS ON NEURAL NETWORKS AND LEARNING SYSTEMS, 2017, 28 (09) : 2000 - 2009
[25] Network Security Using Growing Hierarchical Self-Organizing Maps
Palomo, E. J.
Dominguez, E.
Luque, R. M.
Munoz, J.
ADAPTIVE AND NATURAL COMPUTING ALGORITHMS, 2009, 5495 : 130 - 139
[26] The Growing Self-Organizing Surface Map
DalleMole, Vilson L.
Araujo, Aluizio F. R.
2008 IEEE INTERNATIONAL JOINT CONFERENCE ON NEURAL NETWORKS, VOLS 1-8, 2008, : 2061 - +
[27] Applications of the growing self-organizing map
Villmann, T
Bauer, HU
NEUROCOMPUTING, 1998, 21 (1-3) : 91 - 100
[28] A-GHSOM: An adaptive growing hierarchical self organizing map for network anomaly detection
Ippoliti, Dennis
Zhou, Xiaobo
JOURNAL OF PARALLEL AND DISTRIBUTED COMPUTING, 2012, 72 (12) : 1576 - 1590
[29] Intrusion Detection Based on Self-Organizing Map and Artificial Immunisation Algorithm
Chen, Zhenguo
Zhang, Guanghua
Tian, Liqin
Geng, Zilin
ADVANCED MEASUREMENT AND TEST, PARTS 1 AND 2, 2010, 439-440 : 29 - +
[30] Combining self-organizing map algorithms for robust and scalable intrusion detection
Albayrak, Sahin
Mueller, Achim
Scheel, Christian
Milosevic, Dragan
INTERNATIONAL CONFERENCE ON COMPUTATIONAL INTELLIGENCE FOR MODELLING, CONTROL & AUTOMATION JOINTLY WITH INTERNATIONAL CONFERENCE ON INTELLIGENT AGENTS, WEB TECHNOLOGIES & INTERNET COMMERCE, VOL 2, PROCEEDINGS, 2006, : 123 - +

← 1 2 3 4 5 →