Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming
Commonly addressed problem in intrusion detection system (IDS) research works that employed NSL-KDD dataset is to improve the rare attacks detection rate. However, some of the rare attacks are hard to be recognized by the IDS model due to their patterns are totally missing from the training set, hen...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Springer Verlag
2016
|
| Subjects: | |
| Online Access: | http://psasir.upm.edu.my/id/eprint/54525/ http://psasir.upm.edu.my/id/eprint/54525/1/Improving%20anomalous%20rare%20attack%20detection%20rate%20for%20intrusion%20detection%20system%20using%20support%20vector%20machine%20and%20genetic%20programming.pdf |
| _version_ | 1848852569326092288 |
|---|---|
| author | Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran |
| author_facet | Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran |
| author_sort | Mohd Pozi, Muhammad Syafiq |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Commonly addressed problem in intrusion detection system (IDS) research works that employed NSL-KDD dataset is to improve the rare attacks detection rate. However, some of the rare attacks are hard to be recognized by the IDS model due to their patterns are totally missing from the training set, hence, reducing the rare attacks detection rate. This problem of missing rare attacks can be defined as anomalous rare attacks and hardly been solved in IDS literature. Hence, in this letter, we proposed a new classifier to improve the anomalous attacks detection rate based on support vector machine (SVM) and genetic programming (GP). Based on the experimental results, our classifier, GPSVM, managed to get higher detection rate on the anomalous rare attacks, without significant reduction on the overall accuracy. This is because, GPSVM optimization task is to ensure the accuracy is balanced between classes without reducing the generalization property of SVM. |
| first_indexed | 2025-11-15T10:40:10Z |
| format | Article |
| id | upm-54525 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T10:40:10Z |
| publishDate | 2016 |
| publisher | Springer Verlag |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-545252018-03-27T02:18:32Z http://psasir.upm.edu.my/id/eprint/54525/ Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran Commonly addressed problem in intrusion detection system (IDS) research works that employed NSL-KDD dataset is to improve the rare attacks detection rate. However, some of the rare attacks are hard to be recognized by the IDS model due to their patterns are totally missing from the training set, hence, reducing the rare attacks detection rate. This problem of missing rare attacks can be defined as anomalous rare attacks and hardly been solved in IDS literature. Hence, in this letter, we proposed a new classifier to improve the anomalous attacks detection rate based on support vector machine (SVM) and genetic programming (GP). Based on the experimental results, our classifier, GPSVM, managed to get higher detection rate on the anomalous rare attacks, without significant reduction on the overall accuracy. This is because, GPSVM optimization task is to ensure the accuracy is balanced between classes without reducing the generalization property of SVM. Springer Verlag 2016-10 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/54525/1/Improving%20anomalous%20rare%20attack%20detection%20rate%20for%20intrusion%20detection%20system%20using%20support%20vector%20machine%20and%20genetic%20programming.pdf Mohd Pozi, Muhammad Syafiq and Sulaiman, Md. Nasir and Mustapha, Norwati and Perumal, Thinagaran (2016) Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming. Neural Processing Letters, 44 (2). pp. 279-290. ISSN 1370-4621; ESSN: 1573-773X https://link.springer.com/article/10.1007/s11063-015-9457-y IDS; NSL-KDD; Rare attacks; Imbalances class; SVM; Genetic programming 10.1007/s11063-015-9457-y |
| spellingShingle | IDS; NSL-KDD; Rare attacks; Imbalances class; SVM; Genetic programming Mohd Pozi, Muhammad Syafiq Sulaiman, Md. Nasir Mustapha, Norwati Perumal, Thinagaran Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title | Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_full | Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_fullStr | Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_full_unstemmed | Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_short | Improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| title_sort | improving anomalous rare attack detection rate for intrusion detection system using support vector machine and genetic programming |
| topic | IDS; NSL-KDD; Rare attacks; Imbalances class; SVM; Genetic programming |
| url | http://psasir.upm.edu.my/id/eprint/54525/ http://psasir.upm.edu.my/id/eprint/54525/ http://psasir.upm.edu.my/id/eprint/54525/ http://psasir.upm.edu.my/id/eprint/54525/1/Improving%20anomalous%20rare%20attack%20detection%20rate%20for%20intrusion%20detection%20system%20using%20support%20vector%20machine%20and%20genetic%20programming.pdf |