Intelligent Intrusion Detection Based on Genetically Tuned Artificial Neural Networks
Leon Reznik, Michael J. Adams, and Bryan Woodard
Department of Computer Science, Rochester Institute of Technology, 102 Lomb Memorial Drive, Rochester, NY 14623, USA
Artificial intelligence techniques and in particular neural networks (ANN) have been widely employed in an Intrusion Detection System (IDS) design. Due to their high learning ability, their application allows achieving higher performance in various applications. However, they can improve the resource consumption at the same time. This design goal, which is very important in a real life IDS design has received much less attention so far. The paper investigates the optimization methods of improving the ANN-based IDS performance along with the resource consumption. A particular consideration is given to partially connected neural networks that open another way of tuning the ANN structure toward the application. The study examines the choice of the connectivity ratio and its optimization with genetic algorithms. Various genetic algorithms parameters are tested in computer network attacks detection and recognition problems. The results are analyzed and IDS design recommendations are provided.
-  A. Canning and E. Gardner, “Partially Connected Models of Neural Networks,’ J. of Physics, A Mathematical General, Vol.21, pp. 3275-3284, August 1988.
-  D. Elizondo and E. Fiesler, “A survey of partially connected neural networks,’ The Int. J. of Neural Systems, Vol.8, pp. 535-558, 1997.
-  D. Novikov, R. V. Yampolskiy, and L. Reznik, “Artificial Intelligence Approaches for Intrusion Detection,’ Long Island Systems Applications and Technology Conf. (LISAT2006), Long Island, New York., May 5, 2006.