Network intrusion detection method and device based on ensemble learning

A network intrusion detection and integrated learning technology, applied in the field of information science, can solve the problems of low attack data detection accuracy, high false alarm rate and false alarm rate, reduce false alarm rate and false alarm rate, and improve classification accuracy. Effect

Active Publication Date: 2020-05-19
GUANGDONG UNIV OF TECH
View PDF6 Cites 26 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Considering the different loss costs of misclassifying different types of data traffic in actual situations, this application proposes a network intrusion detection method and device based on ensemble learning to solve the problems existing in the prior art for attack types with a small amount of data Attack data detection accuracy is low, false alarm rate and false alarm rate are high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network intrusion detection method and device based on ensemble learning
  • Network intrusion detection method and device based on ensemble learning
  • Network intrusion detection method and device based on ensemble learning

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0054] In order to solve the problem that the existing network intrusion detection methods have high classification accuracy and low accuracy in the classification of certain small attack types, this application proposes a network intrusion detection method based on ensemble learning. In the stage, a boundary oversampling algorithm is used to artificially synthesize a few attack samples to increase the number of samples, and solve the problem that a few attack types are ignored by the learner algorithm; secondly, an integrated learning method is used to generate multiple learners to improve classification accuracy and reduce False alarm rate and false alarm rate; In the final output, a cost minimization method is proposed to adjust the final output result to meet the needs of actual application scenarios. The specific steps of this application are as follows:

[0055] S1, create a training data set and preprocess it

[0056] S11, collecting network intrusion detection data, for ex...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a network intrusion detection method and device based on ensemble learning, and the method comprises the steps: collecting network intrusion detection data, extracting features, carrying out the preprocessing, building a training data set, selecting attack type data with a smaller data size, and increasing the data size of the attack type data; training a plurality of learners for each data type in the training data set, and then fusing the learners together in an ensemble learning mode to form an ensemble learning model corresponding to each data type; setting an optimal classification threshold for each data type to minimize the cost of misclassification; and respectively inputting to-be-detected data into the ensemble learning model of each data type, and obtaining the data type to which the to-be-detected data belongs according to the output result of the ensemble learning model and the classification threshold. According to the method and the device, the problems of low detection accuracy, high false alarm rate and high false alarm rate of attack data of attack types with small data volume in the prior art can be effectively solved.

Description

Technical field [0001] This application relates to the field of information science and technology, and in particular to a method and device for network intrusion detection based on integrated learning. Background technique [0002] In recent years, the development of machine learning has brought new solutions to the problem of network intrusion detection. From the initial application of basic machine learning algorithms, such as decision tree algorithm, random forest algorithm, Bayesian network algorithm, Markov algorithm, support vector machine algorithm, K-nearest neighbor algorithm, artificial neural network algorithm, etc., These machine learning algorithms combine with each other to achieve new results and solve various problems in different aspects. For example, Muda Z et al. proposed a method of fusion of K-menas algorithm and Bayesian algorithm. GaddamS R et al. proposed a method of fusion of K-Means algorithm and ID3 algorithm in decision tree algorithm. These methods ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06N20/10
CPCH04L63/1416G06N20/10
Inventor 柳毅曾昊罗玉李敏梁雍仕
Owner GUANGDONG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap