Skip to main content
SpringerLink
Log in

DAREnsemble: Decision Tree and Rule Learner Based Ensemble for Network Intrusion Detection System

  • Conference paper
  • First Online:
Proceedings of First International Conference on Information and Communication Technology for Intelligent Systems: Volume 1

Part of the book series: Smart Innovation, Systems and Technologies ((SIST,volume 50))

Abstract

The Intrusion detection system is a network security application which detects anomalies and attackers. Therefore, there is a need of devising and developing a robust and reliable intrusion detection system. Different techniques of machine learning have been used to implement intrusion detection systems. Recently, ensemble of different classifiers is widely used to implement it. In ensemble method, the appropriate selection of base classifiers is a very important process. In this paper, the issues of base classifiers selection are discussed. The main goal of this experimental work is to find out the appropriate base classifiers for ensemble classifier. The best set of base classifier and the best combination rules are identified to build ensemble classifier. A new architecture, DAREnsemble, have proposed for intrusion detection system that consists of unstable base classifiers. DAREnsemble is formulated by combining the advantages of rule learners and decision trees. The performance of the proposed ensemble based classifier for intrusion detection system has evaluated in terms of false positives, root mean squared error and classification accuracy. The experimental results show that the proposed ensemble classifier for intrusion detection system exhibits lowest false positive rate with higher classification accuracy at the expense of model building time and increased complexity.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 219.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Tsai, C.-F., Hsu, Y.-F., Lin, C.-Y., Lin, W.-Y.: Intrusion detection by machine learning: a review. Expert Syst. Appl. 36, 11994–12000 (2009)

    Article  Google Scholar 

  2. Bhuyan, M.H., Bhattacharyya, D.K., Kalita, J.K.: Network anomaly detection: methods, systems and tools. In: IEEE Communications Survey and Tutorials, vol. 16(1), First Quarter (2014)

    Google Scholar 

  3. Basics of Intrusion detection system, www.sans.org/readingroom/whitepapers/detection

  4. Major Types of IDS, http://advancednetworksecurity

  5. Arun Raj Kumar, P., Selvakumar, S.: Detection of distributed denial of service attacks using an ensemble of adaptive and hybrid neuro-fuzzy systems. Comput. Commun. 36, 303–319 (2013)

    Article  Google Scholar 

  6. Krawczyk, B., Wozniak, M., Cyganek, B.: Clustering-based ensembles for one-class classification. Inf. Sci. 264, 182–195 (2014)

    Article  MathSciNet  MATH  Google Scholar 

  7. Chebrolu, S., Abraham, A., Thomas, J.P.: A feature deduction and ensemble design of intrusion detection systems. Comput. Secur. 24, 295–307 (2005)

    Article  Google Scholar 

  8. Mukkamalaa, S., Sunga, A.H., Abrahamb, A.: Intrusion detection uses an ensemble of intelligent paradigms. J. Network Comput. Appl. 28, 167–182 (2005)

    Article  Google Scholar 

  9. Menahem, E., Shabtai, A., Rokach, L., Elovici, Y.: Improving malware detection by applying multi-inducer ensemble. Comput. Stat. Data Anal. 53, 1483–1494 (2009)

    Article  MathSciNet  MATH  Google Scholar 

  10. Liu, Y., Yu, X., Huang, J.X., An, A.: Combining integrated sampling with SVM ensembles for learning from imbalanced datasets. Inf. Process. Manage. 47, 617–631 (2011)

    Article  Google Scholar 

  11. Lin, Y.-D., Lai, Y.-C., Ho, C.-Y., Tai, W.-H.: Creditability based weighted voting for reducing false positives and negatives in intrusion detection. Comput. Secur. 39, 460–474 (2013)

    Article  Google Scholar 

  12. Obimbo, C., Zhou, H., Wilson, R.: Multiple SOFMs working cooperatively in a vote-based ranking system for network intrusion detection. In: Procedia Computer Science, vol. 6, pp. 219–224, Complex Adaptive Systems, vol. 1 (2013)

    Google Scholar 

  13. Elbasiony, R.M., Sallam, E.A., Eltobely, T.E., Fahmy, M.M.: A hybrid network intrusion detection framework based on random forests and weighted k-means. Shams Eng. J. Shams Univ. 4, 753–762 (2013)

    Article  Google Scholar 

  14. Pandaa, M., Abraham, A., Patra, M.R.: A hybrid intelligent approach for network intrusion detection. In: International Conference on Communication Technology and System Design, Procedia Engineering, vol. 30(2012), pp. 1–9 (2011)

    Google Scholar 

  15. Tan, P.-N., Steinbach, M., Kumar, V.: Introduction to data Minin. Published by person, Indian subcontinent version, ISBN-978-93-325-1865-0 (2006)

    Google Scholar 

  16. Sharma, P., Ripple-down rules for knowledge acquisition in intelligent system. J. Technol. Eng. Sci. 1(1) January–June (2009)

    Google Scholar 

  17. Gaikwad, D.P., Thool, R.C.: Intrusion detection system using ripple down rule learner and genetic algorithm. Int. J. Comput. Sci. Inf. Technol. (IJCSIT) 5(6), 6976–6980 (2014)

    Google Scholar 

  18. Gaikwad, D.P., Thool, R.C., Intrusion detection system using bagging ensemble method of machine learning. In: International Conference on Computing Communication Control and Automation (2015)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Computer Department, SGGSIO Engineering and Technology, Vishnupuri, Nanded, India

    Dwarkoba Gaikwad & Ravindra Thool

Authors
  1. Dwarkoba Gaikwad
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ravindra Thool
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Dwarkoba Gaikwad .

Editor information

Editors and Affiliations

  1. Anil Neerukonda Ins. of Tech. & Sci., Visakhapatnam, Andhra Pradesh, India

    Suresh Chandra Satapathy

  2. Indian Statistical Institute, Jadavpur University, Kolkata, India

    Swagatam Das

Rights and permissions

Reprints and permissions

Copyright information

© 2016 Springer International Publishing Switzerland

About this paper

Cite this paper

Gaikwad, D., Thool, R. (2016). DAREnsemble: Decision Tree and Rule Learner Based Ensemble for Network Intrusion Detection System. In: Satapathy, S., Das, S. (eds) Proceedings of First International Conference on Information and Communication Technology for Intelligent Systems: Volume 1. Smart Innovation, Systems and Technologies, vol 50. Springer, Cham. https://doi.org/10.1007/978-3-319-30933-0_20

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-30933-0_20

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-30932-3

  • Online ISBN: 978-3-319-30933-0

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation