Detection of non-content based attacks using GA with extended KDD features

Edward Guillén; Jhordany Rodriguez; Rafael Páez; Andrea Rodriguez

Detection of non-content based attacks using GA with extended KDD features

Edward Guillén, Jhordany Rodriguez, Rafael Páez, Andrea Rodriguez

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Scopus citations

Abstract

Detection attack tools have a very wide range of solutions, from the applications of rules obtained by experience to the use of machine learning techniques, including multiple bioinspired methods. In order to analyze the results of research methods for attack detection, the DARPA KDD data set have been widely used but their data are outdated for various kinds of attacks. A software called Spleen designed to get data from a tested network with the same structure of DARPA data set is introduced. The application is used to complete the data set with additional features according to an attack analysis. In order to show advantages of an extended data set, two genetic methods in the detection of non-content based attacks are tested.

Original language	English
Title of host publication	International MultiConference of Engineers and Computer Scientists, IMECS 2012
Editors	Jon Burgstone, S. I. Ao, Craig Douglas, W. S. Grundfest
Publisher	Newswood Limited
Pages	30-35
Number of pages	6
ISBN (Electronic)	9789881925169
ISBN (Print)	9789881925114
State	Published - 2012
Event	2012 World Congress on Engineering and Computer Science, WCECS 2012 - San Francisco, United States Duration: 24 Oct 2012 → 26 Oct 2012

Publication series

Name	Lecture Notes in Engineering and Computer Science
Volume	1
ISSN (Print)	2078-0958

Conference

Conference	2012 World Congress on Engineering and Computer Science, WCECS 2012
Country/Territory	United States
City	San Francisco
Period	24/10/12 → 26/10/12

Keywords

Adaptative algorithm
Genetic algorithms
Information security
Intrusion detection
KDD
Machine learning TCPIP

Cite this

Guillén, E., Rodriguez, J., Páez, R., & Rodriguez, A. (2012). Detection of non-content based attacks using GA with extended KDD features. In J. Burgstone, S. I. Ao, C. Douglas, & W. S. Grundfest (Eds.), International MultiConference of Engineers and Computer Scientists, IMECS 2012 (pp. 30-35). (Lecture Notes in Engineering and Computer Science; Vol. 1). Newswood Limited.

Guillén, Edward ; Rodriguez, Jhordany ; Páez, Rafael et al. / Detection of non-content based attacks using GA with extended KDD features. International MultiConference of Engineers and Computer Scientists, IMECS 2012. editor / Jon Burgstone ; S. I. Ao ; Craig Douglas ; W. S. Grundfest. Newswood Limited, 2012. pp. 30-35 (Lecture Notes in Engineering and Computer Science).

@inproceedings{9e9a3d40acb247668779f4181606347e,

title = "Detection of non-content based attacks using GA with extended KDD features",

abstract = "Detection attack tools have a very wide range of solutions, from the applications of rules obtained by experience to the use of machine learning techniques, including multiple bioinspired methods. In order to analyze the results of research methods for attack detection, the DARPA KDD data set have been widely used but their data are outdated for various kinds of attacks. A software called Spleen designed to get data from a tested network with the same structure of DARPA data set is introduced. The application is used to complete the data set with additional features according to an attack analysis. In order to show advantages of an extended data set, two genetic methods in the detection of non-content based attacks are tested.",

keywords = "Adaptative algorithm, Genetic algorithms, Information security, Intrusion detection, KDD, Machine learning TCPIP",

author = "Edward Guill{\'e}n and Jhordany Rodriguez and Rafael P{\'a}ez and Andrea Rodriguez",

note = "Publisher Copyright: {\textcopyright} 2012 Newswood Limited. All rights reserved.; 2012 World Congress on Engineering and Computer Science, WCECS 2012 ; Conference date: 24-10-2012 Through 26-10-2012",

year = "2012",

language = "English",

isbn = "9789881925114",

series = "Lecture Notes in Engineering and Computer Science",

publisher = "Newswood Limited",

pages = "30--35",

editor = "Jon Burgstone and Ao, {S. I.} and Craig Douglas and Grundfest, {W. S.}",

booktitle = "International MultiConference of Engineers and Computer Scientists, IMECS 2012",

}

Guillén, E, Rodriguez, J, Páez, R & Rodriguez, A 2012, Detection of non-content based attacks using GA with extended KDD features. in J Burgstone, SI Ao, C Douglas & WS Grundfest (eds), International MultiConference of Engineers and Computer Scientists, IMECS 2012. Lecture Notes in Engineering and Computer Science, vol. 1, Newswood Limited, pp. 30-35, 2012 World Congress on Engineering and Computer Science, WCECS 2012, San Francisco, United States, 24/10/12.

Detection of non-content based attacks using GA with extended KDD features. / Guillén, Edward; Rodriguez, Jhordany; Páez, Rafael et al.
International MultiConference of Engineers and Computer Scientists, IMECS 2012. ed. / Jon Burgstone; S. I. Ao; Craig Douglas; W. S. Grundfest. Newswood Limited, 2012. p. 30-35 (Lecture Notes in Engineering and Computer Science; Vol. 1).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Detection of non-content based attacks using GA with extended KDD features

AU - Guillén, Edward

AU - Rodriguez, Jhordany

AU - Páez, Rafael

AU - Rodriguez, Andrea

PY - 2012

Y1 - 2012

N2 - Detection attack tools have a very wide range of solutions, from the applications of rules obtained by experience to the use of machine learning techniques, including multiple bioinspired methods. In order to analyze the results of research methods for attack detection, the DARPA KDD data set have been widely used but their data are outdated for various kinds of attacks. A software called Spleen designed to get data from a tested network with the same structure of DARPA data set is introduced. The application is used to complete the data set with additional features according to an attack analysis. In order to show advantages of an extended data set, two genetic methods in the detection of non-content based attacks are tested.

AB - Detection attack tools have a very wide range of solutions, from the applications of rules obtained by experience to the use of machine learning techniques, including multiple bioinspired methods. In order to analyze the results of research methods for attack detection, the DARPA KDD data set have been widely used but their data are outdated for various kinds of attacks. A software called Spleen designed to get data from a tested network with the same structure of DARPA data set is introduced. The application is used to complete the data set with additional features according to an attack analysis. In order to show advantages of an extended data set, two genetic methods in the detection of non-content based attacks are tested.

KW - Adaptative algorithm

KW - Genetic algorithms

KW - Information security

KW - Intrusion detection

KW - KDD

KW - Machine learning TCPIP

UR - http://www.scopus.com/inward/record.url?scp=84893179674&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:84893179674

SN - 9789881925114

T3 - Lecture Notes in Engineering and Computer Science

SP - 30

EP - 35

BT - International MultiConference of Engineers and Computer Scientists, IMECS 2012

A2 - Burgstone, Jon

A2 - Ao, S. I.

A2 - Douglas, Craig

A2 - Grundfest, W. S.

PB - Newswood Limited

T2 - 2012 World Congress on Engineering and Computer Science, WCECS 2012

Y2 - 24 October 2012 through 26 October 2012

ER -

Detection of non-content based attacks using GA with extended KDD features

Abstract

Publication series

Conference

Keywords

Other files and links

Fingerprint

Cite this