A NEW APPROACH BASED ON HONEYBEE GUARDING SYSTEM TO IMPROVE INTRUSION DETECTION SYSTEM
Loading...
Date
2011
Authors
AHMED ALI, GHASSAN
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
Increasing of network attacks with sophisticated forms has made the network security
concern a significant necessity for such a network. The intrusion detection system (IDS)
used to identify the legitimate incomer from an intruder. The main problem in an
intrusion detection system is to identify incoming network packet, then assign it to a
selective group based on specific characteristics. In addition, It is also difficult to
distinguish between intruder packet and valid packet that lead to the need of a certain
model to improve classification process in order to get a correct decision for proper
action. Furthermore, the mechanism of alert notification in IDS should be improved to
provide more accuracy in conveying the exact message for suitable action rather than
disturbing the user. In general: most of the existing systems detect general and only
known attack. Therefore, a lot of malicious attack intrudes without any detection.
A new approach, which has been inspired from the honeybee in nature, is
proposed to overcome such identification and classification problems of IDS. ·We
investigate the honeybee colony system as well as their protection system and detection
mechanism to get an improvement approach for IDS detector in order to enhance IDS
system for better intrusion detection. The different type of IDS detector and current
solution are explored and their attributes as well as features and needs are generalized. Then, the good features and attributes of the honeybee system are imitated and adopted
to produce a new approach to be employed in IDS.
The neural network, which is trained by Bees Algorithm, is used to learn patterns
of attacks given in training dataset and use these patterns to fmd specific attacks in test
dataset. Moreover, the trained neural network detects anomalous behaviors based on the
trained normal behavior model in order to train the detector in real-time to detect new intrusions.
The proposed IDS is evaluated by using DARPA KDD 99 dataset and
experiments show that the performance of the proposed approach can detect novel
intrusions and reduce false alarms. Furthermore, the adaptation of the honeybee
detection and defense system itself is a new knowledge that can also help other systems
such as IPS, antivirus, or even defense system to imitate the AI techniques in performing
their functions.
Description
Keywords
HONEYBEE GUARDING SYSTEM , IMPROVE INTRUSION