Intrusion Detection Systems (IDS's) ensure the security of computer networks by monitoring traffic and generating alerts, or taking actions, when suspicious activities are detected. This paper proposes a network-based IDS supporting an intuitive visualization of the time evolution of network traffic. The system is designed to assist the network manager in detecting anomalies, and exploits Auto-Associative Back-Propagation (AABP) neural networks to turn raw data extracted from traffic sources into an intuitive 2-D representation. The neural component operates as a sort of smart compression operator and supports a compact representation of multi-dimensional data. The empirical verification of the mapping method involved the detection of anomalies in traffic ascribed to the Simple Network Management Protocol (SNMP), and confirmed the validity of the proposed approach
Auto-Associative Neural Techniques for Intrusion Detection Systems
GASTALDO, PAOLO;ZUNINO, RODOLFO
2007-01-01
Abstract
Intrusion Detection Systems (IDS's) ensure the security of computer networks by monitoring traffic and generating alerts, or taking actions, when suspicious activities are detected. This paper proposes a network-based IDS supporting an intuitive visualization of the time evolution of network traffic. The system is designed to assist the network manager in detecting anomalies, and exploits Auto-Associative Back-Propagation (AABP) neural networks to turn raw data extracted from traffic sources into an intuitive 2-D representation. The neural component operates as a sort of smart compression operator and supports a compact representation of multi-dimensional data. The empirical verification of the mapping method involved the detection of anomalies in traffic ascribed to the Simple Network Management Protocol (SNMP), and confirmed the validity of the proposed approach
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
