Español English Contacte con nosotros http://www.uc3m.es/portal/page/portal/biblioteca
DSpace e-Archivo
Help


Advanced Search
Home
 
Browse
� Scientific Research
� Academic thesis
flecha Journals
flecha Digital collections
� Institutional
Documentation
Issue Date
Author
Title
Subject
 
Login:
My E-Archivo
authorized users
 
Help and guides
Feedback

Archivo Abierto Institucional de la Universidad Carlos III de Madrid > Investigación > Departamentos > Departamento de Informática > Grupo de Seguridad de las Tecnologías de la Información y de las Comunicaciones > DI - SETI - Artículos en Congresos Internacionales >

Please use this identifier to cite or link to this item: http://hdl.handle.net/10016/9574

Google™ Scholar. Others By: Blasco, Jorge - Orfila, Agustín - Ribagorda, Arturo
Files in This Item:
orfila-improving-ares-2010.pdf533,56 kBAdobe PDFformato pdf
Title: Improving network intrusion detection by means of domain-aware genetic programming
Author(s): Blasco, Jorge
Orfila, Agustín
Ribagorda, Arturo
Publisher: IEEE
Issued date: Feb-2010
Citation: 2010 International Conference on Availability, Reliability and Security (ARES '10), pp. 327-332
URI: http://hdl.handle.net/10016/9574
ISBN: 978-1-4244-5879-0
DOI: http://dx.doi.org/10.1109/ARES.2010.53
Description: Proceeding of: International Conference on Availability, Reliability, and Security, 2010. ARES '10, 15-18 February 2010, Krakow, Poland
Abstract: One of the central areas in network intrusion detection is how to build effective systems that are able to distinguish normal from intrusive traffic. In this paper we explore the use of Genetic Programming (GP) for such a purpose. Although GP has already been studied for this task, the inner features of network intrusion detection have been systematically ignored. To avoid the blind use of GP shown in previous research, we guide the search by means of a fitness function based on recent advances on IDS evaluation. For the experimental work we use a well-known dataset (i.e. KDD- 99) that has become a standard to compare research although its drawbacks. Results clearly show that an intelligent use of GP achieves systems that are comparable (and even better in realistic conditions) to top state-of-the-art proposals in terms of effectiveness, improving them in efficiency and simplicity.
Sponsor: This work was partially supported by CDTI, Ministerio de Industria, Turismo y Comercio of Spain in collaboration with Telefónica I+D, Project SEGUR@ CENIT-2007 2004
Review: PeerReviewed
Publisher version: http://dx.doi.org/10.1109/ARES.2010.53
Keywords: Effectiveness
Efficiency
GP
Intrusion detection
Rights: © IEEE
Appears in Collections:DI - SETI - Capítulos de Monografías
DI - SETI - Artículos en Congresos Internacionales

Refworks Export

SFX Query

Items in E-Archivo are protected by copyright, with all rights reserved, unless otherwise indicated.

 
Valid XHTML 1.0! © Universidad Carlos III de Madrid - Software DSpace - Terms of use - Feedback