Top

Published in:

2016 | OriginalPaper | Chapter

Solution to Data Imbalance Problem in Application Layer Anomaly Detection Systems

Authors : Rafał Kozik, Michał Choraś

Published in: Hybrid Artificial Intelligent Systems

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

Currently, we can observe the increasing number of successful cyber attacks which use vulnerable web pages which allow the hacker (or cracker) to breach the network security (e.g. to deliver a malicious content). This trend is caused by the web applications complexity and diversity, which make it difficult to provide the effective and efficient cyber security countermeasures. Moreover, there are lots of different obfuscation techniques that allow the attacker to overcome signature-based attacks detections mechanisms. Therefore, in this paper we propose a machine-learning web-layer anomaly detection system that adapts our algorithm for packet segmentation and an ensemble of REPTree classifiers. In our experiments we prove that this approach can substantially increase the effectiveness of cyber attacks detection. Moreover, we present the solution to counter the data imbalance problem in cyber security.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter Classification of Melanoma Presence and Thickness Based on Computational Image Analysis

next chapter Ordinal Evolutionary Artificial Neural Networks for Solving an Imbalanced Liver Transplantation Problem

OWASP Top 10 2013. OWASP project homepage. https://www.owasp.org/index.php/Top_10_2013-Top_10

Stuxnet malware. http://www.kaspersky.com/about/news/virus/2014/Stuxnet-Patient-Zero-First-Victims-of-the-Infamous-Worm-Revealed

Black Energy botnet. http://www.kaspersky.com/about/news/virus/2010/Most_wanted_the_Black_Energy_bot

https://ics-cert.us-cert.gov/alerts/ICS-ALERT-14-176-02A

Kruegel, C., Vigna, G.: Anomaly detection of web-based attacks. In: Proceedings of the 10th ACM Conference on Computer and Communications Security, pp. 251–261 (2003)

Chi, L., Hui, K.: Color set size problem with applications to string matching. In: Apostolico, A., Galil, Z., Manber, U., Crochemore, M. (eds.) CPM 1992. LNCS, vol. 644, pp. 230–243. Springer, Heidelberg (1992)CrossRef

Torrano-Gimnez, C., Prez-Villegas, A., Alvarez, G.: The HTTP dataset CSIC 2010. http://users.aber.ac.uk/pds7/csic_dataset/csic2010http.html

Wozniak, M.: Hybrid Classifiers: Methods of Data, Knowledge, and Classifier Combination. Studies in Computational Intelligence. Springer, Heidelberg (2013)

Wolpert, D.H.: The supervised learning no-free-lunch theorems, In: Proceedings of 6th Online World Conference on Soft Computing in Industrial Applications, pp. 25–42 (2001)

10.

Frank, E.: Data Mining: Practical Machine Learning Tools and Techniques. Morgan Kaufmann Series in Data Management Systems, 2nd edn. Morgan Kaufmann, San Francisco (2005)MATH

11.

Quinlan, J.: Simplifying decision trees. I. J. Man Mach. Stud. 27(3), 221–234 (1987)CrossRef

12.

Jayanthi, S.K., Sasikala, S.: REPTree classifier for identifying link spam in web search engines. IJSC 3(2), 498–505 (2013)

Title: Solution to Data Imbalance Problem in Application Layer Anomaly Detection Systems
Authors: Rafał Kozik
Michał Choraś
Publisher: Springer International Publishing
Book: Hybrid Artificial Intelligent Systems
Print ISBN: 978-3-319-32033-5

Electronic ISBN: 978-3-319-32034-2

Copyright Year: 2016
DOI: https://doi.org/10.1007/978-3-319-32034-2_37

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner