• Corpus ID: 49530388

INTRUSION DETECTION SYSTEM USING BOOTSTRAP RESAMPLING APPROACH OF T 2 CONTROL CHART BASED ON SUCCESSIVE DIFFERENCE COVARIANCE MATRIX 1

@inproceedings{Ahsan2018INTRUSIONDS,
  title={INTRUSION DETECTION SYSTEM USING BOOTSTRAP RESAMPLING APPROACH OF T 2 CONTROL CHART BASED ON SUCCESSIVE DIFFERENCE COVARIANCE MATRIX 1},
  author={Muhammad Ahsan and Muhammad Mashuri and Hidayatul Khusna},
  year={2018}
}
The multivariate control chart is one of SPC method that is often used in intrusion detection. The Hotelling’s T2 control chart with Successive Difference Covariance Matrix (SDCM) is the robust method that can detect outliers in the process data for individual observation. This method will effective to be applied in Intrusion Detection System (IDS) because it can detect the anomaly or outliers in the network. The problem arise when the exact distribution of this method has not determined… 

Figures and Tables from this paper

References

SHOWING 1-10 OF 42 REFERENCES

SVC-Based Multivariate Control Charts for Automatic Anomaly Detection in Computer Networks

  • Zhisheng ZhangXuejun Zhu
  • Computer Science, Business
    Third International Conference on Autonomic and Autonomous Systems (ICAS'07)
  • 2007
The proposed SVC (support vector clustering) based multivariate control charts, which do not require the data to have a pre-known probability distribution model, are developed and demonstrated through automatic anomaly detection of typical computer intrusions.

A Dynamic Intrusion Detection System Based on Multivariate Hotelling's T2 Statistics Approach for Network Environments

An approach based on Hotelling's T2 method, a multivariate statistical analysis technique, has been employed for intrusion detection, especially in network environments, and accuracy of the model presented in this work has been found to be much better.

Automatic network intrusion detection: Current techniques and open issues

Probabilistic techniques for intrusion detection based on computer audit data

Unless the scalability problem of complex data models taking into account the ordering property of activity data is solved, intrusion detection techniques based on the frequency property provide a viable solution that produces good intrusion detection performance with low computational overhead.

Bootstrap-Based T 2 Multivariate Control Charts

This study proposes a bootstrap-based multivariate T 2 control chart that can efficiently monitor a process when the distribution of observed data is nonnormal or unknown and presents a case study to demonstrate the applicability of the proposed control chart to real situations.

Intrusion detection

A detailed analysis of the KDD CUP 99 data set

A new data set is proposed, NSL-KDD, which consists of selected records of the complete KDD data set and does not suffer from any of mentioned shortcomings.

A Hybrid SPC Method with the Chi‐Square Distance Monitoring Procedure for Large‐scale, Complex Process Data

A hybrid SPC method with the CSDM procedure for monitoring large-scale, complex process data is designed and tested using various kinds of process data involving uncorrelated, correlated, auto-correlated, normally distributed, and non-normally distributed data variables.

A Novel Covariance Matrix Based Approach for Detecting Network Anomalies

The authors' experimental results show promising detection rates while maintaining false positives at very low rates, and a novel anomaly detection scheme using the correlation information contained in groups of network traffic samples.

THE CONTROL CHART FOR INDIVIDUAL OBSERVATIONS FROM A MULTIVARIATE NON-NORMAL DISTRIBUTION

The Hotelling's T2statistic has been used in constructing a multivariate control chart for individual observations. In Phase II operations, the distribution of the T2statistic is related to the F