• Journal of Internet Computing and Services
    ISSN 2287 - 1136 (Online) / ISSN 1598 - 0170 (Print)
    https://jics.or.kr/
Menu

False Alarm Minimization Technology using SVM in Intrusion Prevention System


Kim Gill-Han, Lee Hyung-Woo, Journal of Internet Computing and Services, Vol. 7, No. 3, pp. 119-132, Jun. 2006
Full Text:
Keywords: Misuse detection, Intrusion Prevention, False Alarm, multi class Support Vector machines(SVM), Machine Learning

Abstract

The network based security techniques well-known until now have week points to be passive in attacks and susceptible to roundabout attacks so that the misuse detection based intrusion prevention system which enables positive correspondence to the attacks of inline mode are used widely. But because the Misuse detection based Intrusion prevention system is proportional to the detection rules, it causes excessive false alarm and is linked to wrong correspondence which prevents the regular network flow and is insufficient to detect transformed attacks, This study suggests an Intrusion prevention system which uses Support Vector machines(hereinafter referred to as SVM) as one of rule based Intrusion prevention system and Anomaly System in order to supplement these problems, When this compared with existing intrusion prevention system, show performance result that improve about 20% and could through intrusion prevention system that propose false positive minimize and know that can detect effectively about new variant attack.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from November 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[APA Style]
Gill-Han, K. & Hyung-Woo, L. (2006). False Alarm Minimization Technology using SVM in Intrusion Prevention System. Journal of Internet Computing and Services, 7(3), 119-132.

[IEEE Style]
K. Gill-Han and L. Hyung-Woo, "False Alarm Minimization Technology using SVM in Intrusion Prevention System," Journal of Internet Computing and Services, vol. 7, no. 3, pp. 119-132, 2006.

[ACM Style]
Kim Gill-Han and Lee Hyung-Woo. 2006. False Alarm Minimization Technology using SVM in Intrusion Prevention System. Journal of Internet Computing and Services, 7, 3, (2006), 119-132.