A novel online incremental learning intrusion prevention system

Christos Constantinides; Stavros Shiaeles; Bogdan Ghita; Nicholas Kolokotronis

doi:10.1109/NTMS.2019.8763842

A novel online incremental learning intrusion prevention system

Christos Constantinides, Stavros Shiaeles, Bogdan Ghita, Nicholas Kolokotronis

School of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Attack vectors are continuously evolving in order to evade Intrusion Detection systems. Internet of Things (IoT) environments, while beneficial for the IT ecosystem, suffer from inherent hardware limitations, which restrict their ability to implement comprehensive security measures and increase their exposure to vulnerability attacks. This paper proposes a novel Network Intrusion Prevention System that utilises a Self-Organizing Incremental Neural Network along with a Support Vector Machine. Due to its structure, the proposed system provides a security solution that does not rely on signatures or rules and is capable to mitigate known and unknown attacks in real-time with high accuracy. Based on our experimental results with the NSL KDD dataset, the proposed framework can achieve on-line updated incremental learning, making it suitable for efficient and scalable industrial applications.

Original language	English
Title of host publication	2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop
Publisher	Institute of Electrical and Electronics Engineers Inc.
Number of pages	6
ISBN (Electronic)	978-1-7281-1542-9, 978-1-7281-1541-2
ISBN (Print)	978-1-7281-1543-6
DOIs	https://doi.org/10.1109/NTMS.2019.8763842
Publication status	Published - 15 Jul 2019
Event	10th IFIP International Conference on New Technologies, Mobility and Security - Canary Islands, Spain Duration: 24 Jun 2019 → 26 Jun 2019

Publication series

Name	2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop
Publisher	IEEE
ISSN (Print)	2157-4952

Conference

Conference	10th IFIP International Conference on New Technologies, Mobility and Security
Abbreviated title	NTMS 2019
Country/Territory	Spain
City	Canary Islands
Period	24/06/19 → 26/06/19

Keywords

Distributed Denial of Service
Intrusion Detection
Machine Learning
Online Incremental Learning
Self-Organizing Incremental Neural Network
Support Vector Machine

Access to Document

10.1109/NTMS.2019.8763842

Cite this

Constantinides, C., Shiaeles, S., Ghita, B., & Kolokotronis, N. (2019). A novel online incremental learning intrusion prevention system. In 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop Article 8763842 (2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NTMS.2019.8763842

Constantinides, Christos ; Shiaeles, Stavros ; Ghita, Bogdan et al. / A novel online incremental learning intrusion prevention system. 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop. Institute of Electrical and Electronics Engineers Inc., 2019. (2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop).

@inproceedings{292f1fae600b40758b72cf49ea98b4db,

title = "A novel online incremental learning intrusion prevention system",

abstract = "Attack vectors are continuously evolving in order to evade Intrusion Detection systems. Internet of Things (IoT) environments, while beneficial for the IT ecosystem, suffer from inherent hardware limitations, which restrict their ability to implement comprehensive security measures and increase their exposure to vulnerability attacks. This paper proposes a novel Network Intrusion Prevention System that utilises a Self-Organizing Incremental Neural Network along with a Support Vector Machine. Due to its structure, the proposed system provides a security solution that does not rely on signatures or rules and is capable to mitigate known and unknown attacks in real-time with high accuracy. Based on our experimental results with the NSL KDD dataset, the proposed framework can achieve on-line updated incremental learning, making it suitable for efficient and scalable industrial applications.",

keywords = "Distributed Denial of Service, Intrusion Detection, Machine Learning, Online Incremental Learning, Self-Organizing Incremental Neural Network, Support Vector Machine",

author = "Christos Constantinides and Stavros Shiaeles and Bogdan Ghita and Nicholas Kolokotronis",

year = "2019",

month = jul,

day = "15",

doi = "10.1109/NTMS.2019.8763842",

language = "English",

isbn = "978-1-7281-1543-6",

series = "2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop",

address = "United States",

note = "10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 ; Conference date: 24-06-2019 Through 26-06-2019",

}

Constantinides, C, Shiaeles, S, Ghita, B & Kolokotronis, N 2019, A novel online incremental learning intrusion prevention system. in 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop., 8763842, 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop, Institute of Electrical and Electronics Engineers Inc., 10th IFIP International Conference on New Technologies, Mobility and Security, Canary Islands, Spain, 24/06/19. https://doi.org/10.1109/NTMS.2019.8763842

A novel online incremental learning intrusion prevention system. / Constantinides, Christos; Shiaeles, Stavros; Ghita, Bogdan et al.
2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop. Institute of Electrical and Electronics Engineers Inc., 2019. 8763842 (2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - A novel online incremental learning intrusion prevention system

AU - Constantinides, Christos

AU - Shiaeles, Stavros

AU - Ghita, Bogdan

AU - Kolokotronis, Nicholas

PY - 2019/7/15

Y1 - 2019/7/15

N2 - Attack vectors are continuously evolving in order to evade Intrusion Detection systems. Internet of Things (IoT) environments, while beneficial for the IT ecosystem, suffer from inherent hardware limitations, which restrict their ability to implement comprehensive security measures and increase their exposure to vulnerability attacks. This paper proposes a novel Network Intrusion Prevention System that utilises a Self-Organizing Incremental Neural Network along with a Support Vector Machine. Due to its structure, the proposed system provides a security solution that does not rely on signatures or rules and is capable to mitigate known and unknown attacks in real-time with high accuracy. Based on our experimental results with the NSL KDD dataset, the proposed framework can achieve on-line updated incremental learning, making it suitable for efficient and scalable industrial applications.

AB - Attack vectors are continuously evolving in order to evade Intrusion Detection systems. Internet of Things (IoT) environments, while beneficial for the IT ecosystem, suffer from inherent hardware limitations, which restrict their ability to implement comprehensive security measures and increase their exposure to vulnerability attacks. This paper proposes a novel Network Intrusion Prevention System that utilises a Self-Organizing Incremental Neural Network along with a Support Vector Machine. Due to its structure, the proposed system provides a security solution that does not rely on signatures or rules and is capable to mitigate known and unknown attacks in real-time with high accuracy. Based on our experimental results with the NSL KDD dataset, the proposed framework can achieve on-line updated incremental learning, making it suitable for efficient and scalable industrial applications.

KW - Distributed Denial of Service

KW - Intrusion Detection

KW - Machine Learning

KW - Online Incremental Learning

KW - Self-Organizing Incremental Neural Network

KW - Support Vector Machine

UR - http://www.scopus.com/inward/record.url?scp=85070374469&partnerID=8YFLogxK

UR - http://www.ntms-conf.org/ntms2019/authors/dates

UR - https://pearl.plymouth.ac.uk/

U2 - 10.1109/NTMS.2019.8763842

DO - 10.1109/NTMS.2019.8763842

M3 - Conference contribution

SN - 978-1-7281-1543-6

T3 - 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop

BT - 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 10th IFIP International Conference on New Technologies, Mobility and Security

Y2 - 24 June 2019 through 26 June 2019

ER -

Constantinides C, Shiaeles S, Ghita B, Kolokotronis N. A novel online incremental learning intrusion prevention system. In 2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop. Institute of Electrical and Electronics Engineers Inc. 2019. 8763842. (2019 10th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2019 - Proceedings and Workshop). doi: 10.1109/NTMS.2019.8763842

A novel online incremental learning intrusion prevention system

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this