期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2017
卷号:95
期号:17
页码:4273
出版社:Journal of Theoretical and Applied
摘要:In this study, an intelligent network intrusion detection and prevention system is presented for detecting network attacks that incorporates a knowledge based system and data mining techniques. To extract hidden knowledge from KDDCup�99 dataset, hybrid data mining process is used. The intrusion dataset for the study is collected from MIT Lincon lab. A predictive model is constructed on total datasets of 63, 661 instances using JRip rule induction, Na�ve Bayes,J48 decision tree and Multilayer Perceptron (MLP) Neural Network. During training 99.91% prediction accuracy is achieved by J48 decision tree. So, the J48 model is integrated with knowledge based system automatically for designing intelligent network intrusion detection and prevention system. In addition, knowledge is acquired, represented and organized in the knowledge based so as to suggest possible prevention for detected attacks. Evaluation results show that the proposed system registers 91.43% accuracy in network intrusion detection and 85% in user acceptance testing. This indicates that the performance of the proposed system is promising to design an intelligent network intrusion detection system that can effectively predict and provide a prevention mechanism. The system cannot update the knowledge of prevention techniques automatically which need further researches.
关键词:Network Intrusion Detection; Intrusion Prevention; Data Mining; Knowledge Based System
