University of Jyväskylä | JYX Digital Repository

  • English  | Give feedback |
    • suomi
    • English
 
  • Login
JavaScript is disabled for your browser. Some features of this site may not work without it.
View Item 
  • JYX
  • Artikkelit
  • Informaatioteknologian tiedekunta
  • View Item
JYX > Artikkelit > Informaatioteknologian tiedekunta > View Item

Combining conjunctive rule extraction with diffusion maps for network intrusion detection

ThumbnailAccepted version
View/Open
431.2Kb

Downloads:  
Show download detailsHide download details  
Juvonen, A., & Sipola, T. (2013). Combining conjunctive rule extraction with diffusion maps for network intrusion detection. In The Eighteenth IEEE Symposium on Computers and Communications (pp. 411-416). Piscataway: IEEE. doi:10.1109/ISCC.2013.6754981
Published in
International Symposium on Computers and Communications
Authors
Juvonen, Antti |
Sipola, Tuomo
Date
2013
Discipline
Tietotekniikka
Copyright
© 2013 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses. This is the authors’ postprint version of the article. The original print version appeared as: A. Juvonen and T. Sipola, “Combining conjunctive rule extraction with diffusion maps for network intrusion detection,” in In The Eighteenth IEEE Symposium on Computers and Communications (ISCC 2013). IEEE 2013.

 
Network security and intrusion detection are important in the modern world where communication happens via information networks. Traditional signature-based intrusion detection methods cannot find previously unknown attacks. On the other hand, algorithms used for anomaly detection often have black box qualities that are difficult to understand for people who are not algorithm experts. Rule extraction methods create interpretable rule sets that act as classifiers. They have mostly been combined with already labeled data sets. This paper aims to combine unsupervised anomaly detection with rule extraction techniques to create an online anomaly detection framework. Unsupervised anomaly detection uses diffusion maps and clustering for labeling an unknown data set. Rule sets are created using conjunctive rule extraction algorithm. This research suggests that the combination of machine learning methods and rule extraction is a feasible way to implement network intrusion detection that is meaningful to network administrators. ...
Publisher
IEEE
Is part of publication
The Eighteenth IEEE Symposium on Computers and Communications
ISSN Search the Publication Forum
1530-1346
Keywords
tunkeutumisen havaitseminen poikkeavuuden havaitseminen n-grammi sääntöjen erottaminen diffuusiokartta tiedon louhinta koneoppiminen intrusion detection anomaly detection n-gram rule extraction diffusion map data mining machine learning
DOI
10.1109/ISCC.2013.6754981
URI

http://urn.fi/URN:NBN:fi:jyu-201404031456

Metadata
Show full item record
Collections
  • Informaatioteknologian tiedekunta [1356]
  • Browse materials
  • Browse materials
  • Articles
  • Conferences and seminars
  • Electronic books
  • Historical maps
  • Journals
  • Tunes and musical notes
  • Photographs
  • Presentations and posters
  • Publication series
  • Research reports
  • Research data
  • Study materials
  • Theses

Browse

All of JYXCollection listBy Issue DateAuthorsSubjectsPublished inDepartmentDiscipline

My Account

Login

Statistics

View Usage Statistics
  • How to publish in JYX?
  • Self-archiving
  • Publish Your Thesis Online
  • Publishing Your Dissertation
  • Publication services

Open Science at the JYU
 
Data Protection Description

Accessibility Statement
Open Science Centre