Abstract
The Intrusion detection system is a network security application which detects anomalies and attackers. Therefore, there is a need of devising and developing a robust and reliable intrusion detection system. Different techniques of machine learning have been used to implement intrusion detection systems. Recently, ensemble of different classifiers is widely used to implement it. In ensemble method, the appropriate selection of base classifiers is a very important process. In this paper, the issues of base classifiers selection are discussed. The main goal of this experimental work is to find out the appropriate base classifiers for ensemble classifier. The best set of base classifier and the best combination rules are identified to build ensemble classifier. A new architecture, DAREnsemble, have proposed for intrusion detection system that consists of unstable base classifiers. DAREnsemble is formulated by combining the advantages of rule learners and decision trees. The performance of the proposed ensemble based classifier for intrusion detection system has evaluated in terms of false positives, root mean squared error and classification accuracy. The experimental results show that the proposed ensemble classifier for intrusion detection system exhibits lowest false positive rate with higher classification accuracy at the expense of model building time and increased complexity.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Tsai, C.-F., Hsu, Y.-F., Lin, C.-Y., Lin, W.-Y.: Intrusion detection by machine learning: a review. Expert Syst. Appl. 36, 11994–12000 (2009)
Bhuyan, M.H., Bhattacharyya, D.K., Kalita, J.K.: Network anomaly detection: methods, systems and tools. In: IEEE Communications Survey and Tutorials, vol. 16(1), First Quarter (2014)
Basics of Intrusion detection system, www.sans.org/readingroom/whitepapers/detection
Major Types of IDS, http://advancednetworksecurity
Arun Raj Kumar, P., Selvakumar, S.: Detection of distributed denial of service attacks using an ensemble of adaptive and hybrid neuro-fuzzy systems. Comput. Commun. 36, 303–319 (2013)
Krawczyk, B., Wozniak, M., Cyganek, B.: Clustering-based ensembles for one-class classification. Inf. Sci. 264, 182–195 (2014)
Chebrolu, S., Abraham, A., Thomas, J.P.: A feature deduction and ensemble design of intrusion detection systems. Comput. Secur. 24, 295–307 (2005)
Mukkamalaa, S., Sunga, A.H., Abrahamb, A.: Intrusion detection uses an ensemble of intelligent paradigms. J. Network Comput. Appl. 28, 167–182 (2005)
Menahem, E., Shabtai, A., Rokach, L., Elovici, Y.: Improving malware detection by applying multi-inducer ensemble. Comput. Stat. Data Anal. 53, 1483–1494 (2009)
Liu, Y., Yu, X., Huang, J.X., An, A.: Combining integrated sampling with SVM ensembles for learning from imbalanced datasets. Inf. Process. Manage. 47, 617–631 (2011)
Lin, Y.-D., Lai, Y.-C., Ho, C.-Y., Tai, W.-H.: Creditability based weighted voting for reducing false positives and negatives in intrusion detection. Comput. Secur. 39, 460–474 (2013)
Obimbo, C., Zhou, H., Wilson, R.: Multiple SOFMs working cooperatively in a vote-based ranking system for network intrusion detection. In: Procedia Computer Science, vol. 6, pp. 219–224, Complex Adaptive Systems, vol. 1 (2013)
Elbasiony, R.M., Sallam, E.A., Eltobely, T.E., Fahmy, M.M.: A hybrid network intrusion detection framework based on random forests and weighted k-means. Shams Eng. J. Shams Univ. 4, 753–762 (2013)
Pandaa, M., Abraham, A., Patra, M.R.: A hybrid intelligent approach for network intrusion detection. In: International Conference on Communication Technology and System Design, Procedia Engineering, vol. 30(2012), pp. 1–9 (2011)
Tan, P.-N., Steinbach, M., Kumar, V.: Introduction to data Minin. Published by person, Indian subcontinent version, ISBN-978-93-325-1865-0 (2006)
Sharma, P., Ripple-down rules for knowledge acquisition in intelligent system. J. Technol. Eng. Sci. 1(1) January–June (2009)
Gaikwad, D.P., Thool, R.C.: Intrusion detection system using ripple down rule learner and genetic algorithm. Int. J. Comput. Sci. Inf. Technol. (IJCSIT) 5(6), 6976–6980 (2014)
Gaikwad, D.P., Thool, R.C., Intrusion detection system using bagging ensemble method of machine learning. In: International Conference on Computing Communication Control and Automation (2015)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2016 Springer International Publishing Switzerland
About this paper
Cite this paper
Gaikwad, D., Thool, R. (2016). DAREnsemble: Decision Tree and Rule Learner Based Ensemble for Network Intrusion Detection System. In: Satapathy, S., Das, S. (eds) Proceedings of First International Conference on Information and Communication Technology for Intelligent Systems: Volume 1. Smart Innovation, Systems and Technologies, vol 50. Springer, Cham. https://doi.org/10.1007/978-3-319-30933-0_20
Download citation
DOI: https://doi.org/10.1007/978-3-319-30933-0_20
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-30932-3
Online ISBN: 978-3-319-30933-0
eBook Packages: EngineeringEngineering (R0)