作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2019, Vol. 45 ›› Issue (10): 183-188,202. doi: 10.19678/j.issn.1000-3428.0051976

• 安全技术 • 上一篇    下一篇

基于支持向量机与Adaboost的入侵检测系统

池亚平1,2, 凌志婷1,2, 王志强1, 杨建喜1   

  1. 1. 北京电子科技学院 网络空间安全系, 北京 100070;
    2. 中国科学院信息工程研究所 中国科学院网络测评技术重点实验室, 北京 100093
  • 收稿日期:2018-07-02 修回日期:2018-08-15 出版日期:2019-10-15 发布日期:2018-10-11
  • 作者简介:池亚平(1969-),女,教授,主研方向为云计算安全、可信网络;凌志婷(通信作者),硕士;王志强,讲师;杨建喜,副教授。
  • 基金资助:
    国家重点研发计划"云计算与大数据"重点专项(2018YFB1004101)。

Intrusion Detection System Based on Support Vector Machine and Adaboost

CHI Yaping1,2, LING Zhiting1,2, WANG Zhiqiang1, YANG Jianxi1   

  1. 1. Department of Cyber Space Security, Beijing Electronic Science and Technology Institute, Beijing 100070, China;
    2. Key Laboratory of Network Assessment Technology of CAS, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China
  • Received:2018-07-02 Revised:2018-08-15 Online:2019-10-15 Published:2018-10-11

摘要: 入侵检测系统在大数据量的情况下误报率高、泛化能力弱,且单一机器学习算法不能较好地应对多种攻击类型。为此,设计一个基于支持向量机(SVM)与Adaboost算法的入侵检测系统。依托Snort系统,利用主成分分析方法对提取的特征做降维处理,并将SVM-Adaboost集合算法作为检测引擎。采用NSL-KDD数据集进行训练和测试,实验结果表明,该系统的正确率达到97.3%,较SVM算法和Adaboost算法分别提高4.8%和14.3%。

关键词: 支持向量机, Adaboost算法, 数据降维, 入侵检测系统, 接受者操作特征曲线

Abstract: The Intrusion Detection System(IDS) has high false alarm rate and weak generalization ability in the case of large amount of data,and the single machine learning algorithm can not cope with multiple attack types well.To address this problem,this paper designs an IDS based on Support Vector Machine(SVM) and Adaboost algorithm.It relies on Snort system,which uses Principal Component Analysis(PCA) method to reduce the dimension of extracted features and uses the SVM-Adaboost clustering algorithm as detection engine.NSL-KDD dataset is used for training and testing.Experimental results show that the accuracy of the proposed system reaches 97.3%,which is improved by 4.8% and 14.3% respectively compared with the SVM algorithm and Adaboost algorithm.

Key words: Support Vector Machine(SVM), Adaboost algorithm, data dimension reduction, Intrusion Detection System(IDS), Receiver Operating Characteristic(ROC) curve

中图分类号: