상세 보기
초록
Machine learning is actively applied to network intrusion detection and various network intrusion detection models have been proposed. Network intrusion detection models can consist of multiple algorithms, and these algorithms can be organized into ensembles or hybrid styles. A hybrid model structure is proposed with a case model exemplifying the proposed structure. The case model consists of a two-layer hierarchical model. The lower layer includes multiple classification models constructed from a single algorithm using the same training data. The upper layer model utilizes the results of the lower-layer models as part of the input data with a aggregating function. The model is evaluated showing its performance by comparing with models using single algorithm. It shows higher value particularly in recall. In cases of relatively low-frequency intrusion types, it shows higher precision and f1-score with the exception of one intrusion type (perl). Despite its better detection scores, the model in this paper is somewhat experimental. Therefore, further research would be helpful regarding the validity of the selection of individual algorithms constituting the overall model and the aggregating function for the results of lower-level models.
키워드
- 제목
- 네트워크 침입탐지를 위한 계층적 하이브리드 모형
- 제목 (타언어)
- A Layered Hybrid Model for Network Intrusion Detection
- 저자
- 윤한성
- 발행일
- 2025-12
- 유형
- Y
- 저널명
- (사)디지털산업정보학회 논문지
- 권
- 21
- 호
- 4
- 페이지
- 193 ~ 204