Survey of intrusion detection systems:techniques,datasets and challenges 被引量：30

导出

摘要 Cyber-attacks are becoming more sophisticated and thereby presenting increasing challenges in accurately detecting intrusions.Failure to prevent the intrusions could degrade the credibility of security services,e.g.data confidentiality,integrity,and availability.Numerous intrusion detection methods have been proposed in the literature to tackle computer security threats,which can be broadly classified into Signature-based Intrusion Detection Systems(SIDS)and Anomaly-based Intrusion Detection Systems(AIDS).This survey paper presents a taxonomy of contemporary IDS,a comprehensive review of notable recent works,and an overview of the datasets commonly used for evaluation purposes.It also presents evasion techniques used by attackers to avoid detection and discusses future research challenges to counter such techniques so as to make computer systems more secure.

作者 Ansam Khraisat Iqbal Gondal Peter Vamplew Joarder Kamruzzaman

机构地区 Internet Commerce Security Laboratory

出处《Cybersecurity》 CSCD 2019年第1期1-22,共22页 网络空间安全科学与技术（英文）

关键词 MALWARE Intrusion detection system NSL_KDD Anomaly detection Machine learning

分类号 TP3 [自动化与计算机技术—计算机科学与技术]

引文网络
相关文献

参考文献1

1Saravanan Subramanian,Vijay Bhanu Srinivasan,Chandrasekaran Ramasamy.Study on Classification Algorithms for Network Intrusion Systems[J].通讯和计算机（中英文版）,2012,9(11):1242-1246. 被引量：5

二级参考文献13

1C. Kruegel, F. Valeur, G. Vigna, Intrusion Detection and Correlation Challenges and Solutions, Springer Science, Boston, 2005.
2J. Zhang, M. Zulkernine, Random-forests-based network intrusion detection systems, IEEE Transactions on Systems Man and Cybernetics 38 1,2008) 649-659.
3H.A. Nguyen, D. Choi, Application of Data Mining to Network Intrusion Detection: Classifier Selection Model, In Challenges for Next Generation Network Operations and Service Management, Springer Berlin, Heidelberg, 2008.
4D.M. Farid, N. Harbi, M.Z bayes and decision tree for International Journal of Rahman, Combining naive adaptive intrusion detection, Network Security & ItsApplications (IJNSA) 2 (2010) 12-25.
5NSL-KDD Dataset for Network-based Intrusion Detection Systems, http://nsl.cs.unb.ca/NSL-KDD/(accessed March 2009).
6S. Lakhina, S. Joseph, B. Verma, Feature reduction using principal component analysis for effective anomaly-based intrusion detection on NSL-KDD, International Journal of Engineering Science and Technology 2 (2010) 1790-1799.
7M. Tavallaee, E. Bagheri, W. Lu, A.A. Ghorbani, A detailed analysis of the KDD CUP 99 dataset, in: Proceedings of the 2009 IEEE Symposium on Computational Intelligence in Security and Defense Applications, Canada, 2009.
8M.W. Berry, M. Browne, Lecture Notes in Data Mining, World Scientific Publishing Co. Pte. Ltd, 2006.
9J.W. Han, M, Kamber, Data Mining Concepts and Techniques, Morgan Kaufmann Publishers, Elsevier Inc, 2006.
10N. Gayatri, S. Nickolas, A.V. Reddy, Feature selection using decision tree induction in class level metrics dataset for software defect predictions, in: Proceedings of the World Congress on Engineering and Computer Science 2010, San Francisco, USA, 2010.

共引文献4

1Serafeim Moustakidis,Patrik Karlsson.A novel feature extraction methodology using Siamese convolutional neural networks for intrusion detection[J].Cybersecurity,2020,3(1):235-247.
2Ansam Khraisat,Iqbal Gondal,Peter Vamplew,Joarder Kamruzzaman.Survey of intrusion detection systems:techniques,datasets and challenges[J].Cybersecurity,2018,1(1):12-33.
3Serafeim Moustakidis,Patrik Karlsson.A novel feature extraction methodology using Siamese convolutional neural networks for intrusion detection[J].Cybersecurity,2018,1(1):847-859.
4Ansam Khraisat,Ammar Alazab.A critical review of intrusion detection systems in the internet of things:techniques,deployment strategy,validation strategy,attacks,public datasets and challenges[J].Cybersecurity,2021,4(1):251-277. 被引量：4

同被引文献64

1朱良根,张玉清,雷振甲.DoS攻击及其防范[J].计算机应用研究,2004,21(7):82-84. 被引量：20
2李元兵,房鼎益,吴晓南,陈晓江.基于神经网络的异常入侵检测系统[J].系统工程与电子技术,2005,27(9):1648-1651. 被引量：2
3饶鲜,杨绍全,魏青,董春曦.基于熵的入侵检测特征参数选择[J].系统工程与电子技术,2006,28(4):599-601. 被引量：8
4Saravanan Subramanian,Vijay Bhanu Srinivasan,Chandrasekaran Ramasamy.Study on Classification Algorithms for Network Intrusion Systems[J].通讯和计算机（中英文版）,2012,9(11):1242-1246. 被引量：5
5顾晓清,王洪元,倪彤光,丁辉.基于时间序列分析的应用层DDoS攻击检测[J].计算机应用,2013,33(8):2228-2231. 被引量：9
6忽朝俭,薛一波,赵粮,李舟军.无文件系统嵌入式固件后门检测[J].通信学报,2013,34(8):140-145. 被引量：11
7Omar Y.Al-Jarrah,Yousof A1-Hammdi,Patti D.Yoo,Sami Muhaidat,Mahmoud Al-Qutayri.Semi-supervised multi-layered clustering model for intrusion detection[J].Digital Communications and Networks,2018,4(4):277-286. 被引量：9
8李军飞,兰巨龙,胡宇翔,邬江兴.SDN多控制器一致性的量化研究[J].通信学报,2016,37(6):86-93. 被引量：9
9高妮,高岭,贺毅岳.面向入侵检测系统的Deep Belief Nets模型[J].系统工程与电子技术,2016,38(9):2201-2207. 被引量：23
10李凤华,殷丽华,吴巍,张林杰,史国振.天地一体化信息网络安全保障技术研究进展及发展趋势[J].通信学报,2016,37(11):156-168. 被引量：95

引证文献30

1金志刚,吴桐.基于特征选取与树状Parzen估计的入侵检测[J].系统工程与电子技术,2021,43(7):1954-1960. 被引量：7
2李舒沁.欧盟网络安全战略新动向及其启示[J].网络安全技术与应用,2021(7):175-177. 被引量：1
3张玲翠,许瑶冰,李凤华,房梁,郭云川,李子孚.天地一体化信息网络安全动态赋能架构[J].通信学报,2021,42(9):87-95. 被引量：4
4Ansam Khraisat,Ammar Alazab.A critical review of intrusion detection systems in the internet of things:techniques,deployment strategy,validation strategy,attacks,public datasets and challenges[J].Cybersecurity,2021,4(1):251-277. 被引量：4
5Ke LIU,Mufeng WANG,Rongkuan MA,Zhenyong ZHANG,Qiang WEI.Detection and localization of cyber attacks on water treatment systems:an entropy-based approach[J].Frontiers of Information Technology & Electronic Engineering,2022,23(4):587-603. 被引量：1
6Raisa Abedin Disha,Sajjad Waheed.Performance analysis of machine learning models for intrusion detection system using Gini Impurity-based Weighted Random Forest (GIWRF) feature selection technique[J].Cybersecurity,2022,5(2):119-140. 被引量：5
7Lewis Nkenyereye,Bayu Adhi Tama,Sunghoon Lim.A Stacking-Based Deep Neural Network Approach for Effective Network Anomaly Detection[J].Computers, Materials & Continua,2021(2):2217-2227. 被引量：3
8Shumaila Shahzadi,Fahad Ahmad,Asma Basharat,Madallah Alruwaili,Saad Alanazi,Mamoona Humayun,Muhammad Rizwan,Shahid Naseem.Machine Learning Empowered Security Management and Quality of Service Provision in SDN-NFV Environment[J].Computers, Materials & Continua,2021(3):2723-2749. 被引量：6
9Nahida Islam,Fahiba Farhin,Ishrat Sultana,M.Shamim Kaiser,Md.Sazzadur Rahman,Mufti Mahmud,A.S.M.Sanwar Hosen,Gi Hwan Cho.Towards Machine Learning Based Intrusion Detection in IoT Networks[J].Computers, Materials & Continua,2021(11):1801-1821. 被引量：3
10Magdy M.Fadel,Sally M.El-Ghamrawy,Amr M.T.Ali-Eldin,Mohammed K.Hassan,Ali I.El-Desoky.HDLIDP: A Hybrid Deep Learning Intrusion Detection and Prevention Framework[J].Computers, Materials & Continua,2022(11):2293-2312.

二级引证文献47

1郭世泽,王小娟,何明枢,任传伦,俞赛赛.网络空间对抗防御中的智能监测技术研究[J].信息安全与通信保密,2021(11):79-94. 被引量：4
2李舒沁.欧盟中小企业网络安全风险应对与启示[J].网络安全技术与应用,2022(4):132-134. 被引量：1
3赵国锋,陆毅,梁康,王杉杉,周继华,韩珍珍.软件定义星地融合网络内生安全体系架构[J].无线电通信技术,2022,48(3):387-393. 被引量：2
4李鹏飞.天地空融合通信在消防应急通信中的应用研究[J].互联网周刊,2022(9):56-58.
5Yanyan Zhang,Xiangjin Ran.A Step-Based Deep Learning Approach for Network Intrusion Detection[J].Computer Modeling in Engineering & Sciences,2021(9):1231-1245.
6李沁雪,刘永桂,黎善斌,谢徐欢,任红卫.基于入侵检测的信息物理系统攻击识别综述[J].控制工程,2022,29(6):1049-1057. 被引量：5
7马超,黄劼.数字银行安全中台架构与实现[J].信息安全研究,2022,8(8):836-844. 被引量：4
8Muhammad Reazul Haque,Saw Chin Tan,Zulfadzli Yusoff,Kashif Nisar,Lee Ching Kwang,Rizaludin Kaspin,Bhawani Shankar Chowdhry,Rajkumar Buyya,Satya Prasad Majumder,Manoj Gupta,Shuaib Memon.Automated Controller Placement for Software-Defined Networks to Resist DDoS Attacks[J].Computers, Materials & Continua,2021(9):3147-3165. 被引量：4
9Bakhtawar Aslam,Ziyad Awadh Alrowaili,Bushra Khaliq,Jaweria Manzoor,Saira Raqeeb,Fahad Ahmad.Ozone Depletion Identification in Stratosphere Through Faster Region-Based Convolutional Neural Network[J].Computers, Materials & Continua,2021(8):2159-2178.
10Mykola Beshley,Natalia Kryvinska,Halyna Beshley,Mykhailo Medvetskyi,Leonard Barolli.Centralized QoS Routing Model for Delay/Loss Sensitive Flows at the SDN-IoT Infrastructure[J].Computers, Materials & Continua,2021(12):3727-3748. 被引量：1

1HE Kang,ZHU Yuefei,HE Yubo,LIU Long,LU Bin,LIN Wei.Detection of Malicious PDF Files Using a Two-Stage Machine Learning Algorithm[J].Chinese Journal of Electronics,2020,29(6):1165-1177. 被引量：1
2Xiaodong Hu,Xinqing Wang,Xin Yang,Dong Wang,Peng Zhang,Yi Xiao.An infrared target intrusion detection method based on feature fusion and enhancement[J].Defence Technology（防务技术）,2020,16(3):737-746. 被引量：10
3Ke Wang,Weishan Huang,Yan Chen,Ningjiang Chen,Ziqi He.Intelligent Multi-objective Anomaly Detection Method Based on Robust Sparse Flow[J].国际计算机前沿大会会议论文集,2020(2):445-457.
4张文芳,孙海锋,王宇,蔺伟,王小敏.基于自更新哈希链的安全高效车-地鉴权方案[J].西南交通大学学报,2020,55(6):1171-1180. 被引量：2
5Michael Schwarz,Samuel Weiser,Daniel Gruss,Clementine Maurice,Stefan Mangard.Malware Guard Extension:abusing Intel SGX to conceal cache attacks[J].Cybersecurity,2020,3(1):22-41.
6Serafeim Moustakidis,Patrik Karlsson.A novel feature extraction methodology using Siamese convolutional neural networks for intrusion detection[J].Cybersecurity,2020,3(1):235-247.
7Yiwen Gao,Yongbin Zhou,Wei Cheng.Efficient electro-magnetic analysis of a GPU bitsliced AES implementation[J].Cybersecurity,2020,3(1):54-70.
8Lili Xu,Mingjie Xu,Feng Li,Wei Huo.ELAID:detecting integer-Overflow-to-Buffer-Overflow vulnerabilities by light-weight and accurate static analysis[J].Cybersecurity,2020,3(1):248-266. 被引量：1
9Stephen D.Zoller,Vishal Hegde,Zachary D.C.Burke,Howard Y.Park,Chad R.Ishmael,Gideon W.Blumstein,William Sheppard,Christopher Hamad,Amanda H.Loftin,Daniel O.Johansen,Ryan A.Smith,Marina M.Sprague,Kellyn R.Hori,Samuel J.Clarkson,Rachel Borthwell,Scott I.Simon,Jeff F.Miller,Scott D.Nelson,Nicholas M.Bernthal.Evading the host response:Staphylococcus“hiding”in cortical bone canalicular system causes increased bacterial burden[J].Bone Research,2020,8(4):447-457. 被引量：1

Cybersecurity

2019年第1期

浏览历史

内容加载中请稍等...