dc.contributor.advisor | Gambäck, Björn | |
dc.contributor.author | Gerstle, Nicholas Olav | |
dc.date.accessioned | 2019-09-11T10:56:08Z | |
dc.date.created | 2016-06-26 | |
dc.date.issued | 2016 | |
dc.identifier | ntnudaim:15032 | |
dc.identifier.uri | http://hdl.handle.net/11250/2615829 | |
dc.description.abstract | -This report covers an initial foray in applying a number of machine learn-
ing algorithms to the problem of classifying labeled network traffic flows in
the ISCX IDS data set. The ISCX data set was developed by the Informa-
tion Security Centre of Excellence at the University of New Brunswick and
provides a large set of labeled traffic flows suitable for testing a number
of detection techniques. A number of limitations should be noted in com-
parison to algorithms tested on the more common KDD99 data set. The
ISCX IDS data set includes only a single attack classification, in contrast
to the four attacks found in KDD99 data, and the number and distri-
bution of attacks is significantly different. Previous work has focused on
more formally structured machine learning techniques such as regression
analysis, clustering, and support vector machines. This work focuses on
comparing artificial neural networks against random forest ensembles and
support vector machines, as well as stateful vs stateless neural networks.
Random forest ensembles were found to be the most accurate through
most of the ISCX IDS data set, and were quick to train. Stateful recur-
rent neural networks did not outperformed stateless networks, though the
difference in accuracy between the two was less than that between the
recurrent network and the random forest ensemble. | en |
dc.language | eng | |
dc.publisher | NTNU | |
dc.subject | Datateknologi (2 årig), Kunstig intelligens | en |
dc.title | Adaptive Intrusion Detection - Using Machine Learning in the Context of Intrusion Detection Systems | en |
dc.type | Master thesis | en |
dc.source.pagenumber | 99 | |
dc.contributor.department | Norges teknisk-naturvitenskapelige universitet, Fakultet for informasjonsteknologi og elektroteknikk,Institutt for datateknologi og informatikk | nb_NO |
dc.date.embargoenddate | 10000-01-01 | |