Dissertation/Thesis Abstract

An Investigation of Anomaly-based Ensemble Models for Multi-domain Intrusion Detection
by Mikhail, Joseph W., D.Engr., The George Washington University, 2019, 117; 10977908
Abstract (Summary)

Although the traditional intrusion detection problem has been well studied with the release of the KDD’99 and NSL-KDD datasets, recent intrusion detection has expanded to include wireless 802.11 networks and Industrial Control Systems & Supervisory Control and Data Acquisition (ICS/SCADA) systems. This research investigates the application of two novel models to multi-domain intrusion detection. The first model is hybrid ensemble that uses complementary-based diversity measures in an efficient greedy search pruning process. The proposed hybrid ensemble is constructed from a heterogeneous combination of decision tree and Naive Bayes classifiers and evaluated for intrusion detection performance on an 802.11 wireless system, a power generation system, and a gas pipeline system. The second model is based on a one-versus-all (OVA) binary framework comprising multiple nested sub-ensembles. To provide good generalization ability, each sub-ensemble contains a collection of sub-learners, and only a portion of the sub-learners implement boosting. A class weight based on the sensitivity metric (true positive rate), learned from the training data only, is assigned to the sub-ensembles of each class. The second model is applied to traditional and 802.11 wireless network intrusion detection. Overall, the proposed models achieve higher detection rates and good overall false positive performance when evaluating the model compared to state-of-the-art methods for effective multi-domain intrusion detection.

Indexing (document details)
Advisor: Etemadi, Amir, Malalla, Ebrahim
Commitee: Blackburn, Timothy, Etemadi, Amir, Malalla, Ebrahim
School: The George Washington University
Department: Engineering Management
School Location: United States -- District of Columbia
Source: DAI-B 80/03(E), Dissertation Abstracts International
Source Type: DISSERTATION
Subjects: Information Technology, Operations research, Computer science
Keywords: 802.11 wireless security, Cybersecurity, ICS/SCADA, Intrusion detection system, Machine learning
Publication Number: 10977908
ISBN: 9780438668676
Copyright © 2019 ProQuest LLC. All rights reserved. Terms and Conditions Privacy Policy Cookie Policy
ProQuest