To Reduce the False Alarm in Intrusion Detection System using self Organizing Map
Ritu Ranjani Singh1, Neetesh Gupta2, Shiv Kumar3
1Ritu ranjani singh, Information Technology, Technocrats Institute of Technology, Bhopal, (M.P.), India.
2Prof. Neetesh Gupta, Asst. Professor & Head, Department Of Information Technology, Technocrats Institute of Technology, Bhopal (M.P.), India.
3Prof. Shiv Kumar, Asst. Professor, Department Of Information Technology, Technocrats Institute of Technology Bhopal (M. P.), India.
Manuscript received on April 19, 2011. | Revised Manuscript received on April 29, 2011. | Manuscript published on May 05, 2011. | PP: 27-32 | Volume-1 Issue-2, May 2011. | Retrieval Number: A031041211
Open Access | Ethics and Policies | Cite | Mendeley
© The Authors. Published By: Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: Intrusion detection systems aim to identify attacks with a high detection rate and a low false alarm rate. Classification-based data mining models for intrusion detection are often ineffective in dealing with dynamic changes in intrusion patterns and characteristics. Consequently, unsupervised learning methods have been given a closer look for network intrusion detection. Traditional instance-based learning methods can only be used to detect known intrusions, since these methods classify instances based on what they have learned. They rarely detect new intrusions since these intrusion classes has not been able to detect new intrusions as well as known intrusions. In this paper, we propose a soft Computing technique such as Self organizing map for detecting the intrusion in network intrusion detection. Problems with k-mean clustering are hard cluster to class assignment, class dominance, and null class problems. The network traffic datasets provided by the NSL-KDD Data set in intrusion detection system which demonstrates the feasibility and promise of unsupervised learning methods for network intrusion detection.
Keywords: Data mining, False alarm, Intrusion detection system, neural network, Self organizing map.