scholarly journals Online Intrusion Scenario Discovery and Prediction Based on Hierarchical Temporal Memory (HTM)

2020 ◽  
Vol 10 (7) ◽  
pp. 2596
Author(s):  
Kai Zhang ◽  
Fei Zhao ◽  
Shoushan Luo ◽  
Yang Xin ◽  
Hongliang Zhu ◽  
...  
Keyword(s):  
Neural Networks ◽  
Online Learning ◽  
Artificial Neural Networks ◽  
Intrusion Detection ◽  
Experimental Results ◽  
Learning Ability ◽  
Intrusion Detection Systems ◽  
Temporal Memory ◽  
Hierarchical Temporal Memory ◽  
Detection Systems

With the development of intrusion detection, a number of the intelligence algorithms (e.g., artificial neural networks) are introduced to enhance the performance of the intrusion detection systems. However, many intelligence algorithms should be trained before being used, and retrained regularly, which is not applicable for continuous online learning and analyzing. In this paper, a new online intrusion scenario discovery framework is proposed and the intelligence algorithm HTM (Hierarchical Temporal Memory) is employed to improve the performance of the online learning ability of the system. The proposed framework can discover and model intrusion scenarios, and the constructed model keeps evolving with the variance of the data. Additionally, a series of data preprocessing methods are introduced to enhance its adaptability to the noisy and twisted data. The experimental results show that the framework is effective in intrusion scenario discovery, and the discovered scenario is more concise and accurate than our previous work.

scholarly journals Neural networks in intrusion detection systems

2012 ◽  
Vol 50 (No. 1) ◽  
pp. 35-40 ◽  
Author(s):  
A. Veselý ◽  
D. Brechlerová
Keyword(s):  
Neural Networks ◽  
Intrusion Detection ◽  
System Structure ◽  
Intrusion Detection Systems ◽  
Network Technology ◽  
Promising Technique ◽  
Abnormal Behaviour ◽  
Rule Based ◽  
Detection Systems ◽  
Neural Network Technology

Security of an information system is its very important property, especially today, when computers are interconnected via internet. Because no system can be absolutely secure, the timely and accurate detection of intrusions is necessary. For this purpose, Intrusion Detection Systems (IDS) were designed. There are two basic models of IDS: misuse IDS and anomaly IDS. Misuse systems detect intrusions by looking for activity that corresponds to the known signatures of intrusions or vulnerabilities. Anomaly systems detect intrusions by searching for an abnormal system activity. Most IDS commercial tools are misuse systems with rule-based expert system structure. However, these techniques are less successful when attack characteristics vary from built-in signatures. Artificial neural networks offer the potential to resolve these problems. As far as anomaly systems are concerned, it is very difficult to build them, because it is difficult to define the normal and abnormal behaviour of a system. Also for building anomaly system, neural networks can be used, because they can learn to discriminate the normal and abnormal behaviour of a system from examples. Therefore, they offer a promising technique for building anomaly systems. This paper presents an overview of the applicability of neural networks in building intrusion systems and discusses advantages and drawbacks of neural network technology.

Sign in / Sign up

Export Citation Format

Share Document