A NEW APPROACH BASED ON HONEYBEE GUARDING SYSTEM TO IMPROVE INTRUSION DETECTION SYSTEM

Thumbnail Image
Date
2011
Authors
AHMED ALI, GHASSAN
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
Increasing of network attacks with sophisticated forms has made the network security concern a significant necessity for such a network. The intrusion detection system (IDS) used to identify the legitimate incomer from an intruder. The main problem in an intrusion detection system is to identify incoming network packet, then assign it to a selective group based on specific characteristics. In addition, It is also difficult to distinguish between intruder packet and valid packet that lead to the need of a certain model to improve classification process in order to get a correct decision for proper action. Furthermore, the mechanism of alert notification in IDS should be improved to provide more accuracy in conveying the exact message for suitable action rather than disturbing the user. In general: most of the existing systems detect general and only known attack. Therefore, a lot of malicious attack intrudes without any detection. A new approach, which has been inspired from the honeybee in nature, is proposed to overcome such identification and classification problems of IDS. ·We investigate the honeybee colony system as well as their protection system and detection mechanism to get an improvement approach for IDS detector in order to enhance IDS system for better intrusion detection. The different type of IDS detector and current solution are explored and their attributes as well as features and needs are generalized. Then, the good features and attributes of the honeybee system are imitated and adopted to produce a new approach to be employed in IDS. The neural network, which is trained by Bees Algorithm, is used to learn patterns of attacks given in training dataset and use these patterns to fmd specific attacks in test dataset. Moreover, the trained neural network detects anomalous behaviors based on the trained normal behavior model in order to train the detector in real-time to detect new intrusions. The proposed IDS is evaluated by using DARPA KDD 99 dataset and experiments show that the performance of the proposed approach can detect novel intrusions and reduce false alarms. Furthermore, the adaptation of the honeybee detection and defense system itself is a new knowledge that can also help other systems such as IPS, antivirus, or even defense system to imitate the AI techniques in performing their functions.
Description
Keywords
HONEYBEE GUARDING SYSTEM , IMPROVE INTRUSION
Citation
URI
http://hdl.handle.net/123456789/1504
Collections
Pusat Pengajian Sains Komputer - Tesis