International Journal of Network Security & Its Applications (IJNSA)
--- UGC Listed, ERA Indexed----
ISSN 0974 - 9330 (Online); 0975 - 2307 (Print)
http://airccse.org/journal/ijnsa.html
Article
INTRUSION DETECTION SYSTEM USING DISCRETE FOURIER TRANSFORM WITH WINDOW FUNCTION
Authors
Yusuke Tsuge and HidemaTanaka
National Defense Academy of Japan Hashirimizu 1-10-20 Yokosuka, Kanagawa Japan 239-8686,
National Defense Academy of Japan Hashirimizu 1-10-20 Yokosuka, Kanagawa Japan 239-8686,
Abstract
An Intrusion Detection System (IDS) is counter measure against network attack. There are mainly two
types of detections; signature-based and anomaly-based. And there are two kinds of error; false negative
and false positive. In development of IDS, establishment of a method to reduce such false is a major issue.
In this paper, we propose a new anomaly-based detection method using Discrete Fourier Transform
(DFT)with window function. In our method, we assume fluctuation of pay load in ordinary sessions as
random. On the other hand, we can see fluctuation in attack sessions have bias. From the view point of
spectrum analysis based on such assumption, we can find out different characteristic in spectrum of attack
sessions. Using the characteristic, we can detect attack sessions. Example detection against Ky o to 2006+
data set shows 12.0% of false positive at most,and 0.0% of false negative
Keywords
Intrusion Detection System, Discrete Fourier Transform, window function, Kyoto2006+ dataset
Original Source URL: http://aircconline.com/ijnsa/V8N2/8216ijnsa02.pdf
No comments:
Post a Comment