Intrusion detection by machine learning: A review

Chih Fong Tsai; Yu Feng Hsu; Chia Ying Lin; Wei Yang Lin

doi:10.1016/j.eswa.2009.05.029

Intrusion detection by machine learning: A review

Chih Fong Tsai, Yu Feng Hsu, Chia Ying Lin, Wei Yang Lin

Department of Information Management

Research output: Contribution to journal › Review article › peer-review

779 Scopus citations

Abstract

The popularity of using Internet contains some risks of network attacks. Intrusion detection is one major research problem in network security, whose aim is to identify unusual access or attacks to secure internal networks. In literature, intrusion detection systems have been approached by various machine learning techniques. However, there is no a review paper to examine and understand the current status of using machine learning techniques to solve the intrusion detection problems. This chapter reviews 55 related studies in the period between 2000 and 2007 focusing on developing single, hybrid, and ensemble classifiers. Related studies are compared by their classifier design, datasets used, and other experimental setups. Current achievements and limitations in developing intrusion detection systems by machine learning are present and discussed. A number of future research directions are also provided.

Original language	English
Pages (from-to)	11994-12000
Number of pages	7
Journal	Expert Systems with Applications
Volume	36
Issue number	10
DOIs	https://doi.org/10.1016/j.eswa.2009.05.029
State	Published - Dec 2009

Keywords

Ensemble classifiers
Hybrid classifiers
Intrusion detection
Machine learning

Access to Document

10.1016/j.eswa.2009.05.029

Cite this

@article{af2e0815db4e43daac67130bb3e9d22e,

title = "Intrusion detection by machine learning: A review",

abstract = "The popularity of using Internet contains some risks of network attacks. Intrusion detection is one major research problem in network security, whose aim is to identify unusual access or attacks to secure internal networks. In literature, intrusion detection systems have been approached by various machine learning techniques. However, there is no a review paper to examine and understand the current status of using machine learning techniques to solve the intrusion detection problems. This chapter reviews 55 related studies in the period between 2000 and 2007 focusing on developing single, hybrid, and ensemble classifiers. Related studies are compared by their classifier design, datasets used, and other experimental setups. Current achievements and limitations in developing intrusion detection systems by machine learning are present and discussed. A number of future research directions are also provided.",

keywords = "Ensemble classifiers, Hybrid classifiers, Intrusion detection, Machine learning",

author = "Tsai, {Chih Fong} and Hsu, {Yu Feng} and Lin, {Chia Ying} and Lin, {Wei Yang}",

year = "2009",

month = dec,

doi = "10.1016/j.eswa.2009.05.029",

language = "???core.languages.en_GB???",

volume = "36",

pages = "11994--12000",

journal = "Expert Systems with Applications",

issn = "0957-4174",

number = "10",

}

TY - JOUR

T1 - Intrusion detection by machine learning

T2 - A review

AU - Tsai, Chih Fong

AU - Hsu, Yu Feng

AU - Lin, Chia Ying

AU - Lin, Wei Yang

PY - 2009/12

Y1 - 2009/12

N2 - The popularity of using Internet contains some risks of network attacks. Intrusion detection is one major research problem in network security, whose aim is to identify unusual access or attacks to secure internal networks. In literature, intrusion detection systems have been approached by various machine learning techniques. However, there is no a review paper to examine and understand the current status of using machine learning techniques to solve the intrusion detection problems. This chapter reviews 55 related studies in the period between 2000 and 2007 focusing on developing single, hybrid, and ensemble classifiers. Related studies are compared by their classifier design, datasets used, and other experimental setups. Current achievements and limitations in developing intrusion detection systems by machine learning are present and discussed. A number of future research directions are also provided.

AB - The popularity of using Internet contains some risks of network attacks. Intrusion detection is one major research problem in network security, whose aim is to identify unusual access or attacks to secure internal networks. In literature, intrusion detection systems have been approached by various machine learning techniques. However, there is no a review paper to examine and understand the current status of using machine learning techniques to solve the intrusion detection problems. This chapter reviews 55 related studies in the period between 2000 and 2007 focusing on developing single, hybrid, and ensemble classifiers. Related studies are compared by their classifier design, datasets used, and other experimental setups. Current achievements and limitations in developing intrusion detection systems by machine learning are present and discussed. A number of future research directions are also provided.

KW - Ensemble classifiers

KW - Hybrid classifiers

KW - Intrusion detection

KW - Machine learning

UR - http://www.scopus.com/inward/record.url?scp=69249230890&partnerID=8YFLogxK

U2 - 10.1016/j.eswa.2009.05.029

DO - 10.1016/j.eswa.2009.05.029

M3 - 回顧評介論文

AN - SCOPUS:69249230890

SN - 0957-4174

VL - 36

SP - 11994

EP - 12000

JO - Expert Systems with Applications

JF - Expert Systems with Applications

IS - 10

ER -

Intrusion detection by machine learning: A review

Abstract

Keywords

Access to Document

Fingerprint

Cite this