Journal of the Korean Institute of Intelligent Systems (한국지능시스템학회논문지)

Korean Institute of Intelligent Systems (한국지능시스템학회)
권호 표지
DOI QR코드

DOI QR Code

Data Fusion Algorithm based on Inference for Anomaly Detection in the Next-Generation Intrusion Detection

차세대 침입탐지에서 이상탐지를 위한 추론 기반 데이터 융합 알고리즘

  • Received : 2016.05.10
  • Accepted : 2016.06.20
  • Published : 2016.06.25
Download PDF
⟨ Previous Next ⟩

Abstract

In this paper, we propose the algorithms of processing the uncertainty data using data fusion for the next generation intrusion detection. In the next generation intrusion detection, a lot of data are collected by many of network sensors to discover knowledge from generating information in cyber space. It is necessary the data fusion process to extract knowledge from collected sensors data. In this paper, we have proposed method to represent the uncertainty data, by classifying where is a confidence interval in interval of uncertainty data through feature analysis of different data using inference method with Dempster-Shafer Evidence Theory. In this paper, we have implemented a detection experiment that is classified by the confidence interval using IRIS plant Data Set for anomaly detection of uncertainty data. As a result, we found that it is possible to classify data by confidence interval.

본 논문은 차세대 침입탐지 시스템을 위해서 데이터 융합에서의 불확실한 데이터 처리의 알고리즘을 제안한다. 차세대 침입탐지는 사이버 공간에서 생성되어지는 정보를 지식으로 만들어내기 위해 수많은 네트워크 센서로부터의 데이터가 수집되어진다. 수집된 센서 정보를 지식의 수준으로 이끌어내기 위해서 데이터 융합의 과정이 필요하다. 이를 위해 본 논문에서는 Demster-Shafer 증거이론 추론적 기법을 통하여 서로 다른 데이터들의 특징을 분석하여 불확실한 데이터가 어느 구간에서 신뢰구간을 갖는지를 분류하여, 불확실한 데이터에 대한 표현을 이루어낸다. 본 실험내용에서는 이러한 불확실성 데이터에 대한 이상탐지를 위해 iris plant 데이터세트를 이용한 신뢰구간에 따른 분류를 실행하였다. 이에 대해 각 신뢰구간을 통해서 데이터 분류가 가능하다는 것을 검증하였다.

Keywords

References

  1. Bass, Tim. Intrusion detection systems and multisensor data fusion. Communications of the ACM 43.4 99-105 :(2000). https://doi.org/10.1145/332051.332079
  2. Barford, Paul, Somesh Jha, and Vinod Yegneswaran. Fusion and filtering in distributed intrusion detection systems. Proc. Allerton Conference on Communication, Control and Computing. 2004.
  3. Klein, Lawrence A. Sensor and data fusion: a tool for information assessment and decision making. Vol. 324. Bellingham eWA WA: Spie Press, 2004.
  4. Khaleghi, Bahador, et al. Multisensor data fusion: A review of the state-of-the-art. Information Fusion 14.1 pp. 28-44. 2013. https://doi.org/10.1016/j.inffus.2011.08.001
  5. Lalmas, Mounia. A formal model for data fusion. Flexible Query Answering Systems. Springer Berlin Heidelberg, 274-288. 2002.
  6. Seo, Young Mi Jee, Hong Ke, Soontak Lee, Rainfall Frequency Analysis and Uncertainty Quantification Using Dempster-Shafer Theory, Korea Water Resources Association 2010 KWRA conference pp. 1390-1394, 2010
  7. MLA Deng, Xinyang, and Yong Deng. Multisensor Information Fusion Based on Dempster-shafer Theory and Power Average Operator. Journal of Computational Information Systems 9.16 pp. 6417-6424. 2013
  8. Castanedo, Federico. A review of data fusion techniques. The Scientific World Journal 2013 (2013).
  9. Yuan, Ye, Shuyuan Shang, and Li Li. Network intrusion detection using DS evidence combination with generalized regression neural network."Journal of Computational Information Systems 7.5 (2011): 1802-1809.
  10. Yu, Dong, and Deborah Frincke. Alert confidence fusion in intrusion detection systems with extended Dempster-Shafer theory. Proceedings of the 43rd annual Southeast regional conference-Volume 2. ACM, 2005.
  11. Burroughs, Daniel J., Linda F. Wilson, and George V. Cybenko. Analysis of distributed intrusion detection systems using Bayesian methods. Performance, Computing, and Communications Conference, 2002. 21st IEEE International. IEEE, 2002.
  12. Chen, Qi, and Uwe Aickelin. Anomaly Detection Using the Dempster-Shafer Method. DMIN. 2006.
  13. Chen, Qi, et al. Data classification using the Dempster-Shafer method" Journal of Experimental & Theoretical Artificial Intelligence 26.4, 493-517. (2014) https://doi.org/10.1080/0952813X.2014.886301

Cited by

  1. Intruder Detection System Based on Pyroelectric Infrared Sensor vol.26, pp.5, 2016, https://doi.org/10.5391/JKIIS.2016.26.5.361