Fast Binary Network Intrusion Detection based on Matched Filter Optimization

Hajar Saif Alsaadi; Rachid Hedjam; Abderezak Touzene; Abdelhamid Abdessalem

doi:10.1109/ICIoT48696.2020.9089659

Fast Binary Network Intrusion Detection based on Matched Filter Optimization

Hajar Saif Alsaadi, Rachid Hedjam, Abderezak Touzene, Abdelhamid Abdessalem

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

Securing networks has become very critical task because of the continued appearance of attacks and the growing number of Internet users. The detection, classification and prevention of attacks are provided by the so-called Intrusion Detection System (IDS). In this article, we have proposed and evaluated a new model of network intrusion detection based on matched filter optimization called NIDeMFO for Network Intrusion Detection based on Matched Filter Optimization. Similar to Linear Discriminant Analysis (LDA), the goal is to design a linear filter that projects data into a space where both classes, normal and attack, are well separated. The difference with LDA is that the margin between the averages of the two classes in the projected space is controlled by a parameter. The proposed detection model is evaluated on the NSL-KDD benchmark. The results show its competitiveness and effectiveness compared to many existing detection models.

Original language	English
Title of host publication	2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	195-199
Number of pages	5
ISBN (Electronic)	9781728148212
DOIs	https://doi.org/10.1109/ICIoT48696.2020.9089659
Publication status	Published - Feb 2020
Event	2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020 - Doha, Qatar Duration: Feb 2 2020 → Feb 5 2020

Publication series

Name	2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020

Conference

Conference	2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020
Country/Territory	Qatar
City	Doha
Period	2/2/20 → 2/5/20

Keywords

Anomaly Detection
Machine learning
Matched Filter
Network Intrusion Detection Systems
Network security

ASJC Scopus subject areas

Artificial Intelligence
Computer Networks and Communications
Hardware and Architecture
Information Systems
Information Systems and Management

Access to Document

10.1109/ICIoT48696.2020.9089659

Cite this

Alsaadi, H. S., Hedjam, R., Touzene, A., & Abdessalem, A. (2020). Fast Binary Network Intrusion Detection based on Matched Filter Optimization. In 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020 (pp. 195-199). [9089659] (2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICIoT48696.2020.9089659

Fast Binary Network Intrusion Detection based on Matched Filter Optimization. / Alsaadi, Hajar Saif; Hedjam, Rachid; Touzene, Abderezak et al.

2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020. Institute of Electrical and Electronics Engineers Inc., 2020. p. 195-199 9089659 (2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Alsaadi, HS, Hedjam, R, Touzene, A & Abdessalem, A 2020, Fast Binary Network Intrusion Detection based on Matched Filter Optimization. in 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020., 9089659, 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020, Institute of Electrical and Electronics Engineers Inc., pp. 195-199, 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020, Doha, Qatar, 2/2/20. https://doi.org/10.1109/ICIoT48696.2020.9089659

Alsaadi HS, Hedjam R, Touzene A , Abdessalem A. Fast Binary Network Intrusion Detection based on Matched Filter Optimization. In 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020. Institute of Electrical and Electronics Engineers Inc. 2020. p. 195-199. 9089659. (2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020). doi: 10.1109/ICIoT48696.2020.9089659

Alsaadi, Hajar Saif ; Hedjam, Rachid ; Touzene, Abderezak et al. / Fast Binary Network Intrusion Detection based on Matched Filter Optimization. 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020. Institute of Electrical and Electronics Engineers Inc., 2020. pp. 195-199 (2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020).

@inproceedings{817f81fe87ee47db87da50eb68d48177,

title = "Fast Binary Network Intrusion Detection based on Matched Filter Optimization",

abstract = "Securing networks has become very critical task because of the continued appearance of attacks and the growing number of Internet users. The detection, classification and prevention of attacks are provided by the so-called Intrusion Detection System (IDS). In this article, we have proposed and evaluated a new model of network intrusion detection based on matched filter optimization called NIDeMFO for Network Intrusion Detection based on Matched Filter Optimization. Similar to Linear Discriminant Analysis (LDA), the goal is to design a linear filter that projects data into a space where both classes, normal and attack, are well separated. The difference with LDA is that the margin between the averages of the two classes in the projected space is controlled by a parameter. The proposed detection model is evaluated on the NSL-KDD benchmark. The results show its competitiveness and effectiveness compared to many existing detection models.",

keywords = "Anomaly Detection, Machine learning, Matched Filter, Network Intrusion Detection Systems, Network security",

author = "Alsaadi, {Hajar Saif} and Rachid Hedjam and Abderezak Touzene and Abdelhamid Abdessalem",

note = "Funding Information: The authors would like to thank the SQU for their financial support (internal grant, IG/SCI/COMP/19/02). Publisher Copyright: {\textcopyright} 2020 IEEE.; 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020 ; Conference date: 02-02-2020 Through 05-02-2020",

year = "2020",

month = feb,

doi = "10.1109/ICIoT48696.2020.9089659",

language = "English",

series = "2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "195--199",

booktitle = "2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020",

}

TY - GEN

T1 - Fast Binary Network Intrusion Detection based on Matched Filter Optimization

AU - Alsaadi, Hajar Saif

AU - Hedjam, Rachid

AU - Touzene, Abderezak

AU - Abdessalem, Abdelhamid

PY - 2020/2

Y1 - 2020/2

N2 - Securing networks has become very critical task because of the continued appearance of attacks and the growing number of Internet users. The detection, classification and prevention of attacks are provided by the so-called Intrusion Detection System (IDS). In this article, we have proposed and evaluated a new model of network intrusion detection based on matched filter optimization called NIDeMFO for Network Intrusion Detection based on Matched Filter Optimization. Similar to Linear Discriminant Analysis (LDA), the goal is to design a linear filter that projects data into a space where both classes, normal and attack, are well separated. The difference with LDA is that the margin between the averages of the two classes in the projected space is controlled by a parameter. The proposed detection model is evaluated on the NSL-KDD benchmark. The results show its competitiveness and effectiveness compared to many existing detection models.

AB - Securing networks has become very critical task because of the continued appearance of attacks and the growing number of Internet users. The detection, classification and prevention of attacks are provided by the so-called Intrusion Detection System (IDS). In this article, we have proposed and evaluated a new model of network intrusion detection based on matched filter optimization called NIDeMFO for Network Intrusion Detection based on Matched Filter Optimization. Similar to Linear Discriminant Analysis (LDA), the goal is to design a linear filter that projects data into a space where both classes, normal and attack, are well separated. The difference with LDA is that the margin between the averages of the two classes in the projected space is controlled by a parameter. The proposed detection model is evaluated on the NSL-KDD benchmark. The results show its competitiveness and effectiveness compared to many existing detection models.

KW - Anomaly Detection

KW - Machine learning

KW - Matched Filter

KW - Network Intrusion Detection Systems

KW - Network security

UR - http://www.scopus.com/inward/record.url?scp=85085475688&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85085475688&partnerID=8YFLogxK

U2 - 10.1109/ICIoT48696.2020.9089659

DO - 10.1109/ICIoT48696.2020.9089659

M3 - Conference contribution

AN - SCOPUS:85085475688

T3 - 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020

SP - 195

EP - 199

BT - 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2020 IEEE International Conference on Informatics, IoT, and Enabling Technologies, ICIoT 2020

Y2 - 2 February 2020 through 5 February 2020

ER -

Fast Binary Network Intrusion Detection based on Matched Filter Optimization

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this