A smart network intrusion detection system based on network data analyzer and support vector machine

Because of the critical interest for viable IDS in networks security, the researchers are trying to recognize enhanced methods. This work shows how the KDD dataset is exceptionally helpful for testing distinctive DDoS classifiers. Conclusively, there are two principal ways to reduce the classificati...

Full description

Saved in:
Bibliographic Details
Main Authors: Babatunde O.S., Ahmad A.R., Mostafa S.A., Foozy C.F.M., Khalaf B.A., Fadel A.H., Shamala P.
Other Authors: 57219411278
Format: Article
Published: World Academy of Research in Science and Engineering 2023
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.uniten.dspace-25668
record_format dspace
spelling my.uniten.dspace-256682023-05-29T16:12:29Z A smart network intrusion detection system based on network data analyzer and support vector machine Babatunde O.S. Ahmad A.R. Mostafa S.A. Foozy C.F.M. Khalaf B.A. Fadel A.H. Shamala P. 57219411278 35589598800 37036085800 56380430100 57205359430 57219163717 56345862600 Because of the critical interest for viable IDS in networks security, the researchers are trying to recognize enhanced methods. This work shows how the KDD dataset is exceptionally helpful for testing distinctive DDoS classifiers. Conclusively, there are two principal ways to reduce the classification complexity and improve the DDoS attack detection accuracy by using nonlinear Support Vector Machine (SVM)s: (1) reducing the number of support vectors; (2) simplifying the classification process for special kernels. This paper proposes a Smart Intrusion Detection System (SIDS) that integrates a Network Data Analyzer (NDA) and SVM to reduce the computation iterations needed by the SVM by eliminating the presumed attack types before performing the classification process. Reduction in data can also serve as a way to increase speed and reduce time in computations. Also, it enhances performance evaluation as 3 types of attack are easier to evaluate than 4 types especially where the 4th type is dominant in the analyzed datasets (the case of DDoS attack being about 79% of the total dataset). As experimented, the proposed Smart Intrusion Detection System method has shown a way in dataset reduction by simply eliminating the DDOS attack types with the same amount of data as compared to Batch 2. Batch 1 serves as a control experiment as indicated by its good performance evaluation measurements. � 2020, World Academy of Research in Science and Engineering. All rights reserved. Final 2023-05-29T08:12:29Z 2023-05-29T08:12:29Z 2020 Article 10.30534/ijeter/2020/3381.12020 2-s2.0-85092604509 https://www.scopus.com/inward/record.uri?eid=2-s2.0-85092604509&doi=10.30534%2fijeter%2f2020%2f3381.12020&partnerID=40&md5=d982618b5d224490c9c6e20524348ef8 https://irepository.uniten.edu.my/handle/123456789/25668 8 1 Special Issue 1 213 220 All Open Access, Bronze World Academy of Research in Science and Engineering Scopus
institution Universiti Tenaga Nasional
building UNITEN Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Tenaga Nasional
content_source UNITEN Institutional Repository
url_provider http://dspace.uniten.edu.my/
description Because of the critical interest for viable IDS in networks security, the researchers are trying to recognize enhanced methods. This work shows how the KDD dataset is exceptionally helpful for testing distinctive DDoS classifiers. Conclusively, there are two principal ways to reduce the classification complexity and improve the DDoS attack detection accuracy by using nonlinear Support Vector Machine (SVM)s: (1) reducing the number of support vectors; (2) simplifying the classification process for special kernels. This paper proposes a Smart Intrusion Detection System (SIDS) that integrates a Network Data Analyzer (NDA) and SVM to reduce the computation iterations needed by the SVM by eliminating the presumed attack types before performing the classification process. Reduction in data can also serve as a way to increase speed and reduce time in computations. Also, it enhances performance evaluation as 3 types of attack are easier to evaluate than 4 types especially where the 4th type is dominant in the analyzed datasets (the case of DDoS attack being about 79% of the total dataset). As experimented, the proposed Smart Intrusion Detection System method has shown a way in dataset reduction by simply eliminating the DDOS attack types with the same amount of data as compared to Batch 2. Batch 1 serves as a control experiment as indicated by its good performance evaluation measurements. � 2020, World Academy of Research in Science and Engineering. All rights reserved.
author2 57219411278
author_facet 57219411278
Babatunde O.S.
Ahmad A.R.
Mostafa S.A.
Foozy C.F.M.
Khalaf B.A.
Fadel A.H.
Shamala P.
format Article
author Babatunde O.S.
Ahmad A.R.
Mostafa S.A.
Foozy C.F.M.
Khalaf B.A.
Fadel A.H.
Shamala P.
spellingShingle Babatunde O.S.
Ahmad A.R.
Mostafa S.A.
Foozy C.F.M.
Khalaf B.A.
Fadel A.H.
Shamala P.
A smart network intrusion detection system based on network data analyzer and support vector machine
author_sort Babatunde O.S.
title A smart network intrusion detection system based on network data analyzer and support vector machine
title_short A smart network intrusion detection system based on network data analyzer and support vector machine
title_full A smart network intrusion detection system based on network data analyzer and support vector machine
title_fullStr A smart network intrusion detection system based on network data analyzer and support vector machine
title_full_unstemmed A smart network intrusion detection system based on network data analyzer and support vector machine
title_sort smart network intrusion detection system based on network data analyzer and support vector machine
publisher World Academy of Research in Science and Engineering
publishDate 2023
_version_ 1806425701789728768
score 13.223943