Vis enkel innførsel

dc.contributor.advisorGambäck, Björn
dc.contributor.authorGerstle, Nicholas Olav
dc.date.accessioned2019-09-11T10:56:08Z
dc.date.created2016-06-26
dc.date.issued2016
dc.identifierntnudaim:15032
dc.identifier.urihttp://hdl.handle.net/11250/2615829
dc.description.abstract-This report covers an initial foray in applying a number of machine learn- ing algorithms to the problem of classifying labeled network traffic flows in the ISCX IDS data set. The ISCX data set was developed by the Informa- tion Security Centre of Excellence at the University of New Brunswick and provides a large set of labeled traffic flows suitable for testing a number of detection techniques. A number of limitations should be noted in com- parison to algorithms tested on the more common KDD99 data set. The ISCX IDS data set includes only a single attack classification, in contrast to the four attacks found in KDD99 data, and the number and distri- bution of attacks is significantly different. Previous work has focused on more formally structured machine learning techniques such as regression analysis, clustering, and support vector machines. This work focuses on comparing artificial neural networks against random forest ensembles and support vector machines, as well as stateful vs stateless neural networks. Random forest ensembles were found to be the most accurate through most of the ISCX IDS data set, and were quick to train. Stateful recur- rent neural networks did not outperformed stateless networks, though the difference in accuracy between the two was less than that between the recurrent network and the random forest ensemble.en
dc.languageeng
dc.publisherNTNU
dc.subjectDatateknologi (2 årig), Kunstig intelligensen
dc.titleAdaptive Intrusion Detection - Using Machine Learning in the Context of Intrusion Detection Systemsen
dc.typeMaster thesisen
dc.source.pagenumber99
dc.contributor.departmentNorges teknisk-naturvitenskapelige universitet, Fakultet for informasjonsteknologi og elektroteknikk,Institutt for datateknologi og informatikknb_NO
dc.date.embargoenddate10000-01-01


Tilhørende fil(er)

Thumbnail
Thumbnail
Thumbnail

Denne innførselen finnes i følgende samling(er)

Vis enkel innførsel