55 research outputs found
A neural network cost function for highly class-imbalanced data sets
We introduce a new cost function for the training of a neural network classifier in conditions of high class imbalance. This function, based on an approximate confusion matrix, represents a balance of sensitivity and specificity and is thus well suited to problems where cost functions such as the mean squared error and cross entropy are prone to overpredicting the majority class. The benefit of the new measure is shown on a set of common class-imbalanced datasets using the Matthews Correlation Coefficient as an independent scoring measure
A near-autonomous and incremental intrusion detection system through active learning of known and unknown attacks
Intrusion detection is a traditional practice of security experts, however,
there are several issues which still need to be tackled. Therefore, in this
paper, after highlighting these issues, we present an architecture for a hybrid
Intrusion Detection System (IDS) for an adaptive and incremental detection of
both known and unknown attacks. The IDS is composed of supervised and
unsupervised modules, namely, a Deep Neural Network (DNN) and the K-Nearest
Neighbors (KNN) algorithm, respectively. The proposed system is near-autonomous
since the intervention of the expert is minimized through the active learning
(AL) approach. A query strategy for the labeling process is presented, it aims
at teaching the supervised module to detect unknown attacks and improve the
detection of the already-known attacks. This teaching is achieved through
sliding windows (SW) in an incremental fashion where the DNN is retrained when
the data is available over time, thus rendering the IDS adaptive to cope with
the evolutionary aspect of the network traffic. A set of experiments was
conducted on the CICIDS2017 dataset in order to evaluate the performance of the
IDS, promising results were obtained.Comment: 6 pages, 3 figures, 32 references, conferenc
- …