Abstract
Fuzzy rule-based technique, combining fuzzy logic and expert system methodology, not only is capable to deal with uncertainty in intrusion detection but also allows the most flexible reasoning about the widest variety of information possible. It can be used in both anomaly and misuse detections. This paper presents a method for detecting intrusion based on fuzzy rule-based technique. Fuzzy Reasoning Petri Nets (FRPN) model is used to represent fuzzy rule base and to derive the final detection decision as an inference engine. FRPN have parallel reasoning ability and are readily used into real time detection. An illustration example of TCP SYN flooding attack detection is provided.
Original language | English (US) |
---|---|
Pages (from-to) | 1272-1277 |
Number of pages | 6 |
Journal | Proceedings of the IEEE International Conference on Systems, Man and Cybernetics |
Volume | 2 |
State | Published - 2003 |
Event | System Security and Assurance - Washington, DC, United States Duration: Oct 5 2003 → Oct 8 2003 |
All Science Journal Classification (ASJC) codes
- Control and Systems Engineering
- Hardware and Architecture
Keywords
- Fuzzy rules
- Intrusion detection
- Petri nets