Fuzziness based semi-supervised learning approach for intrusion detection system

Rana Aamir Raza ASHFAQ, Xi-Zhao WANG*, Joshua Zhexue HUANG, Haider ABBAS, Yu-Lin HE

*Corresponding author for this work

Research output: Journal PublicationsJournal Article (refereed)peer-review

453 Citations (Scopus)

Abstract

Countering cyber threats, especially attack detection, is a challenging area of research in the field of information assurance. Intruders use polymorphic mechanisms to masquerade the attack payload and evade the detection techniques. Many supervised and unsupervised learning approaches from the field of machine learning and pattern recognition have been used to increase the efficacy of intrusion detection systems (IDSs). Supervised learning approaches use only labeled samples to train a classifier, but obtaining sufficient labeled samples is cumbersome, and requires the efforts of domain experts. However, unlabeled samples can easily be obtained in many real world problems. Compared to supervised learning approaches, semi-supervised learning (SSL) addresses this issue by considering large amount of unlabeled samples together with the labeled samples to build a better classifier. This paper proposes a novel fuzziness based semi-supervised learning approach by utilizing unlabeled samples assisted with supervised learning algorithm to improve the classifier's performance for the IDSs. A single hidden layer feed-forward neural network (SLFN) is trained to output a fuzzy membership vector, and the sample categorization (low, mid, and high fuzziness categories) on unlabeled samples is performed using the fuzzy quantity. The classifier is retrained after incorporating each category separately into the original training set. The experimental results using this technique of intrusion detection on the NSL-KDD dataset show that unlabeled samples belonging to low and high fuzziness groups make major contributions to improve the classifier's performance compared to existing classifiers e.g., naive bayes, support vector machine, random forests, etc.

Original languageEnglish
Pages (from-to)484-497
Number of pages14
JournalInformation Sciences
Volume378
Early online date3 May 2016
DOIs
Publication statusPublished - 1 Feb 2017
Externally publishedYes

Bibliographical note

The authors would like to extend their sincere appreciation to the Deanship of Scientific Research at King Saud University for its funding of this research through the Research Group Project no. RG-1435-048. This research is also supported by China Postdoctoral Science Foundation (2015M572361), Basic Research Project of Knowledge Innovation Program in Shenzhen (JCYJ20150324140036825), and National Natural Science Foundations of China (61503252 and 71371063).

Keywords

  • Divide-and-conquer strategy
  • Fuzziness
  • Intrusion detection
  • Random weight neural network
  • Semi-supervised learning

Fingerprint

Dive into the research topics of 'Fuzziness based semi-supervised learning approach for intrusion detection system'. Together they form a unique fingerprint.

Cite this