Skip to main content
SpringerLink
Log in
Book cover

Proceedings of the 3rd European Conference on Computer Network Defense pp 35–47Cite as

Intrusion Detection Using Cost-Sensitive Classification

  • Conference paper

  • 266 Accesses

Part of the book series: Lecture Notes in Electrical Engineering ((LNEE,volume 30))

Abstract

Intrusion Detection is an invaluable part of computer networks defense. An important consideration is the fact that raising false alarms carries a significantly lower cost than not detecting attacks. For this reason, we examine how cost-sensitive classification methods can be used in Intrusion Detection systems. The performance of the approach is evaluated under different experimental conditions, cost matrices and different classification models, in terms of expected cost, as well as detection and false alarm rates. We find that even under unfavourable conditions, cost-sensitive classification can improve performance significantly, if only slightly.

*Work done while Aikaterini Mitrokotsa was with the University of Piraeus.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   129.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD   169.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. DeGroot MH (2004) Optimal Statistical Decisions. John Wiley & Sons, New York. 1970. Republished in 2004

    Book  MATH  Google Scholar 

  2. Fan W, Lee W, Stolfo SJ, Miller M (2000) A multiple model cost-sensitive approach for intrusion detection. Proceedings of the 11th European conference on Machine Learning 2000 (ECML’00), Barcelona, Catalonia, Spain, Lecture Notes in Computer Science, vol. 1810, pp 142–153

    Google Scholar 

  3. Pietraszek P (2004) Using adaptive alert classification to reduce false positives in intrusion Detection. In: Proceedings of Recent Advances in Intrusion Detection 7th International Symposium (RAID’04), Sophia, Antipolis, France, Lecture Notes in Computer Science 3224, Springer, pp102–124

    Google Scholar 

  4. Domingos P (1999) MetaCost A general method for making classifiers cost-sensitive. In: Proceedings of the Fifth ACM SIGKDD Int’l conf. On Knowledge Discovery and Data Mining, San Diego, CA, pp 155–164

    Google Scholar 

  5. Ting K (1998) Inducing cost-sensitive trees via instance weighting. In: Proceedings of the Second European Symposium on Principles of Data Mining and Knowledge Discovery. vol 1510 of Lecture Notes in AI., Springer-Verlag, pp 137–147

    Google Scholar 

  6. Cohen WW (1995) Fast effective rule induction. In: Proceedings of the Twelfth International Conference on Machine Learning, Lake Taho, CA, Morgan Kaufmann, pp 115–123

    Google Scholar 

  7. KDD Cup 1999 Data (1999). Available from <http://kdd.ics.uci.edu/databases/kddcup99/kddcup99.html>

  8. Elkan C (1999) Results of the KDD'99 Classifier Learning Contest. September, Available from < http://www-cse.ucsd.edu/users/elkan/clresults.html>

  9. Efron B, Tibshirani RJ (1994) An Introduction to the Bootstrap. Monographs on Statistics & Applied Probability, vol. 57, Chapmann & Hall, New York, Nov, Pub.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Vrije University Amsterdam, Netherlands

    Aikaterini Mitrokotsa*

  2. University of Leoben, Leoben, Austria

    Christos Dimitrakakis

  3. University of Piraeus, Piraeus, Greece

    Christos Douligeris

Authors
  1. Aikaterini Mitrokotsa*
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Christos Dimitrakakis
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Christos Douligeris
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Aikaterini Mitrokotsa* .

Editor information

Editors and Affiliations

  1. Inst. Computer Science, Foundation for Research & Technology, Hellas, PO Box 1385, 711 10, Iraklion, Crete, Greece

    Vasilios Siris , Kostas Anagnostakis  & Sotiris Ioannidis ,  & 

  2. European Network & Information Security Agency (ENISA), PO Box 1309, 710 01, Iraklion, Crete, Greece

    Panagiotis Trimintzios

Rights and permissions

Reprints and permissions

Copyright information

© 2009 Springer Science+Business Media, LLC

About this paper

Cite this paper

Mitrokotsa*, A., Dimitrakakis, C., Douligeris, C. (2009). Intrusion Detection Using Cost-Sensitive Classification. In: Siris, V., Anagnostakis, K., Ioannidis, S., Trimintzios, P. (eds) Proceedings of the 3rd European Conference on Computer Network Defense. Lecture Notes in Electrical Engineering, vol 30. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-85555-4_3

Download citation

  • DOI: https://doi.org/10.1007/978-0-387-85555-4_3

  • Publisher Name: Springer, Boston, MA

  • Print ISBN: 978-0-387-85554-7

  • Online ISBN: 978-0-387-85555-4

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation