Share Email Print

Proceedings Paper

A new search algorithm based on probability in intrusion detection
Author(s): Jianhua Sun; Hai Jin; Zongfen Han; Hao Chen; Yanping Yang
Format Member Price Non-Member Price
PDF $14.40 $18.00
cover GOOD NEWS! Your organization subscribes to the SPIE Digital Library. You may be able to download this paper for free. Check Access

Paper Abstract

Detection rate is vital to intrusion detection. We propose a new search algorithm base on probability to speed up the process rate for a novel compound intrusion detection system (CIDS). We employ an improved Bayesian decision theorem to build this compound model. The improved Bayesian decision theorem brings four profits to this model. The first is to eliminate the flaws of a narrow definition for normal patterns and intrusion patterns. The second is to extend the known intrusions patterns to novel intrusions patterns. The third is to reduce risks that detecting intrusion brings to system. The last is to offer a method to build a compound intrusion detection model that integrates misuse intrusion detection system (MIDS) and anomaly intrusion detection system (AIDS). During the experiment of this model, we find that different system calls sequences have different probabilities. So the sequences with high probabilities are compared prior to an observed sequence, which is the foundation of our new search algorithm. We evaluate the performance of the new algorithm using numerical results, and the results show this new algorithm increases the detection rate.

Paper Details

Date Published: 15 April 2004
PDF: 7 pages
Proc. SPIE 5282, Network Architectures, Management, and Applications, (15 April 2004); doi: 10.1117/12.520538
Show Author Affiliations
Jianhua Sun, Huazhong Univ. of Science and Technology (China)
Hai Jin, Huazhong Univ. of Science and Technology (China)
Zongfen Han, Huazhong Univ. of Science and Technology (China)
Hao Chen, Huazhong Univ. of Science and Technology (China)
Yanping Yang, Huazhong Univ. of Science and Technology (China)

Published in SPIE Proceedings Vol. 5282:
Network Architectures, Management, and Applications
S. J. Ben Yoo; Kwok-wai Cheung; Yun-Chur Chung; Guangcheng Li, Editor(s)

© SPIE. Terms of Use
Back to Top