Growing hierarchical self-organizing map for alarm filtering in network intrusion detection systems

被引:0
|
作者
Faour, Ahmad [1 ]
Leray, Philippe [1 ]
Eter, Bassam [2 ]
机构
[1] INSA Rouen, Lab LITIS, EA 4051, Rouen, France
[2] Lebanese Univ, Beirut, Lebanon
来源
NEW TECHNOLOGIES, MOBILITY AND SECURITY | 2007年
关键词
D O I
10.1007/978-1-4020-6270-4_58
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
It is a well-known problem that intrusion detection systems overload their human operators by triggering thousands of alarms per day. This paper presents a new approach for handling intrusion detection alarms more efficiently. Self-Organizing Map (SOM) and Growing Hierarchical Self-Organizing Map (GHSOM) are used to discover interest patterns, signs of potential real attack scenarios aiming each machine in the network. GHSOM addresses two main limits of SOM which are caused, on the one hand, by the static architecture of this model, as well as, on the other hand, by the limited capabilities for the representation of hierarchical relations of the data. The experiments conducted on several logs extracted from the SNORT NIDS, confirm that the GHSOM can form an adaptive architecture, which grows in size and depth during its training process, thus to unfold the hierarchical structure of the analyzed logs of alerts
引用
收藏
页码:631 / 631
页数:1
相关论文
共 50 条
  • [41] Pruning Growing Self-Organizing Map Network for Human Physical Activity Identification
    Mo, Lingfei
    Yu, Hongjie
    Hua, Wenqi
    JOURNAL OF HEALTHCARE ENGINEERING, 2022, 2022
  • [42] Adaptive filtering with the self-organizing map: A performance comparison
    Barreto, Guilherme A.
    Souza, Luis Gustavo A.
    NEURAL NETWORKS, 2006, 19 (6-7) : 785 - 798
  • [43] Modeling the development of lexicon with a growing self-organizing map
    Farkas, I
    Li, P
    PROCEEDINGS OF THE 6TH JOINT CONFERENCE ON INFORMATION SCIENCES, 2002, : 553 - 556
  • [44] Mapping based on the Growing Self-organizing Map (GSOM)
    Ruan, Xiao-Gang
    Xu, Shao-Min
    Li, Xin-Yuan
    Xitong Fangzhen Xuebao / Journal of System Simulation, 2008, 20 (01): : 81 - 84
  • [45] Growing self-organizing trees for autonomous hierarchical clustering
    Doan, Nhat-Quang
    Azzag, Hanane
    Lebbah, Mustapha
    NEURAL NETWORKS, 2013, 41 : 85 - 95
  • [46] A growing parallel self-organizing map for unsupervised learning
    Valova, I
    Szer, D
    Georgieva, N
    PROCEEDING OF THE 2002 INTERNATIONAL JOINT CONFERENCE ON NEURAL NETWORKS, VOLS 1-3, 2002, : 1924 - 1929
  • [47] BREGMAN DIVERGENCES FOR GROWING HIERARCHICAL SELF-ORGANIZING NETWORKS
    Lopez-Rubio, Ezequiel
    Jose Palomo, Esteban
    Dominguez, Enrique
    INTERNATIONAL JOURNAL OF NEURAL SYSTEMS, 2014, 24 (04)
  • [48] Growing hierarchical self-organizing maps for Web mining
    Herbert, Joseph P.
    Yao, JingTao
    PROCEEDINGS OF THE IEEE/WIC/ACM INTERNATIONAL CONFERENCE ON WEB INTELLIGENCE: WI 2007, 2007, : 299 - 302
  • [49] The hierarchical isometric self-organizing map for manifold representation
    Guan, Haiying
    Turk, Matthew
    2007 IEEE CONFERENCE ON COMPUTER VISION AND PATTERN RECOGNITION, VOLS 1-8, 2007, : 3081 - +
  • [50] A hierarchical Self-Organizing Map for egg breakage classification
    Moshou, D
    De Ketelaere, B
    Coucke, P
    De Baerdemaeker, J
    Ramon, H
    MATHEMATICAL AND CONTROL APPLICATIONS IN AGRICULTURE AND HORTICULTURE, 1997, : 125 - 129
12345