Time-Series Modeling for Intrusion Detection Systems
نویسندگان
چکیده
The advent of computer networks and the Internet has drastically altered means by which we share information & interact with each other. However, this technological advancement also created room for malevolent behaviour where individuals exploit weak points intent gaining access to confidential data, blocking activity etc. To end, intrusion detection systems (IDS) are needed filter malicious traffic prevent common attacks. In past, these relied on a fixed set rules or comparison previous increased availability computational power machine learning emerged as promising solution task. While many now use methodology in real-time reactive approach mitigation, aim explore potential configuring it proactive time series prediction. work, delve into possibility further. More specifically, convert classic IDS dataset time-series format predictive models forecast forthcoming malign packets. findings indicate that our model performs strongly, exhibiting accuracy is within 4% margin when compared conventional detection.
منابع مشابه
Processing intrusion detection alert aggregates with time series modeling
The main use of intrusion detection systems (IDS) is to detect attacks against information systems and networks. Normal use of the network and its functioning can also be monitored with an IDS. It can be used to control, for example, the use of management and signaling protocols, or the network traffic related to some less critical aspects of system policies. These complementary usages can gene...
متن کاملReal-time Intrusion Detection Systems
This paper examines real-time intrusion detection systems. Intrusion detection systems detect attacks that attempt to compromise the integrity, confidentiality, or availability of a resource [1]. In particular, this paper focuses on intrusion detection approaches, techniques, and systems.
متن کاملMulti Scale Time Series Prediction for Intrusion Detection
We propose an anomaly-based network intrusion detection system, which analyzes traffic features to detect anomalies. The proposed system can be used both in online as well as off-line mode for detecting deviations from the expected behavior. Although our approach uses network packet or flow data, it is general enough to be adaptable for use with any other network variable, which may be used as ...
متن کاملModeling requests among cooperating intrusion detection systems
It is important for intrusion detection systems (IDSs) to share information in order to discover attacks involving multiple sites. However, no framework exists for an IDS to request from and send to another IDS data relevant to specific events. The lack of such a framework may result in a waste of processing time, storage capacity and network bandwidth. This paper proposes a formal framework mo...
متن کاملMoving dispersion method for statistical anomaly detection in intrusion detection systems
A unified method for statistical anomaly detection in intrusion detection systems is theoretically introduced. It is based on estimating a dispersion measure of numerical or symbolic data on successive moving windows in time and finding the times when a relative change of the dispersion measure is significant. Appropriate dispersion measures, relative differences, moving windows, as well as tec...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Lecture notes in networks and systems
سال: 2023
ISSN: ['2367-3370', '2367-3389']
DOI: https://doi.org/10.1007/978-3-031-38333-5_1