首页 | 本学科首页   官方微博 | 高级检索  
     

一种高效的面向轻量级入侵检测系统的特征选择算法
引用本文:陈友,沈华伟,李洋,程学旗.一种高效的面向轻量级入侵检测系统的特征选择算法[J].计算机学报,2007,30(8):1398-1408.
作者姓名:陈友  沈华伟  李洋  程学旗
作者单位:1. 中国科学院计算技术研究所,北京,100080;中国科学院研究生院,北京,100039
2. 中国科学院计算技术研究所,北京,100080
基金项目:国家重点基础研究发展计划(973计划) , 国家信息安全计划项目
摘    要:特征选择是网络安全、模式识别、数据挖掘等领域的重要问题之一.针对高维数据对象,特征选择一方面可以提高分类精度和效率,另一方面可以找出富含信息的特征子集.文中提出一种wrapper型的特征选择算法来构建轻量级入侵检测系统.该算法采用遗传算法和禁忌搜索相混合的搜索策略对特征子集空间进行随机搜索,然后利用提供的数据在无约束优化线性支持向量机上的平均分类正确率作为特征子集的评价标准来获取最优特征子集.文中按照DOS,PROBE,R2L,U2R 4个类别对KDD1999数据集进行分类,并且在每一类上进行了大量的实验.实验结果表明,对每一类攻击文中提出的特征选择算法不仅可以加快特征选择的速度,而且基于该算法构建的入侵检测系统在建模时间、检测时间、检测已知攻击、检测未知攻击上,与没有运用特征选择的入侵检测系统相比具有更好的性能.

关 键 词:特征选择  遗传算法  禁忌搜索  线性支持向量机  入侵检测系统  轻量级  入侵  检测系统  特征选择算法  Intrusion  Detection  System  Lightweight  Building  Algorithm  Feature  Selection  性能  运用  未知攻击  检测时间  建模  速度  结果  实验  数据集  类别  PROBE
修稿时间:2007-03-05

An Efficient Feature Selection Algorithm Toward Building Lightweight Intrusion Detection System
CHEN You,SHEN Hua-Wei,LI Yang,CHENG Xue-Qi.An Efficient Feature Selection Algorithm Toward Building Lightweight Intrusion Detection System[J].Chinese Journal of Computers,2007,30(8):1398-1408.
Authors:CHEN You  SHEN Hua-Wei  LI Yang  CHENG Xue-Qi
Affiliation:1.Institute of Computing Technology, Chinese Academy of Sciences, Beijing 100080 ;2.Graduate University of Chinese Academy of Sciences, Beijing 100039
Abstract:Feature selection is one of the most important problems in network security, pattern recognition and data mining areas. For high dimension data, feature selection not only can improve the accuracy and efficiency of classification, but also discover informative subset. This paper proposes a new feature selection algorithm aiming at building lightweight intrusion detection system (IDS) by (1) using a hybrid strategy of genetic algorithm and tabu search (GATS) as search strategy to specify a candidate subset for evaluation; (2) using modified linear Support Vector Machines (SVMs) iterative procedure as wrapper approach to obtain the optimum feature subset. The authors have examined the feasibility of the feature selection algorithm by conducting several experiments on KDD1999 intrusion detection dataset which was categorized as DOS, PROBE, R2L and U2R. The experimental results show that the approach is able not only to speed up the process of selecting important features but also to guarantee high detection rates. Furthermore, the experiments indicate that intrusion detection system with a combination of feature selection algorithm has better performances than that without feature selection algorithm in terms of building time, testing time and detection rates.
Keywords:feature selection  genetic algorithm  tabu search  linear support vector machines  intrusion detection system
本文献已被 CNKI 维普 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号