1. //
  2. Start
  3. //
  4. Publications
  5. //
  6. Active learning for network intrusion de...
  7. //

Active learning for network intrusion detection

Research output: Contributions to collected editions/worksArticle in conference proceedingsResearchpeer-review

Authors

Anomaly detection for network intrusion detection is usually considered an unsupervised task. Prominent techniques, such as one-class support vector machines, learn a hypersphere enclosing network data, mapped to a vector space, such that points outside of the ball are considered anomalous. However, this setup ignores relevant information such as expert and background knowledge. In this paper, we rephrase anomaly detection as an active learning task. We propose an effective active learning strategy to query low-confidence observations and to expand the data basis with minimal labeling effort. Our empirical evaluation on network intrusion detection shows that our approach consistently outperforms existing methods in relevant scenarios.

Original languageEnglish
Title of host publicationAISec '09 : Proceedings of the ACM Conference on Computer and Communications Security
EditorsDirk Balfanz, Jessica Staddon
Number of pages8
Place of PublicationNew York
PublisherAssociation for Computing Machinery, Inc
Publication date09.11.2009
Pages47-54
ISBN (print)978-1-60558-781-3
DOIs
Publication statusPublished - 09.11.2009
Externally publishedYes
Event2nd ACM Workshop on Security and Artificial Intelligence, AISec '09, Co-located with the 16th ACM Computer and Communications Security Conference - Chicago, United States
Duration: 09.11.200913.11.2009
Conference number: 2

    Research areas

  • Informatics - Active learning, Anomaly detection, Intrusion detection, Machine learning, Network security, Support vector data description
  • Business informatics

Other publications by the same author(s)

Interactive sequential generative models for team sports

Fassmeyer, D., Cordes, M. & Brefeld, U., 02.2025, In: Machine Learning. 114, 2, 15 p., 38.

Research output: Journal contributionsJournal articlesResearchpeer-review

Joint Item Response Models for Manual and Automatic Scores on Open-Ended Test Items

Bengs, D., Brefeld, U., Kroehne, U. & Zehner, F., 2025, (Accepted/In press) In: Psychometrika.

Research output: Journal contributionsJournal articlesResearchpeer-review

Machine Learning and Data Mining for Sports Analytics: 11th International Workshop, MLSA 2024, Vilnius, Lithuania, September 9, 2024, Revised Selected Papers

Brefeld, U. (Editor), Davis, J. (Editor), Van Haaren, J. (Editor) & Zimmermann, A. (Editor), 2025, Cham: Springer Verlag. 119 p. (Communications in Computer and Information Science; vol. 2460)

Research output: Books and anthologiesConference proceedingsResearch

Masked autoencoder for multiagent trajectories

Rudolph, Y. & Brefeld, U., 02.2025, In: Machine Learning. 114, 2, 18 p., 44.

Research output: Journal contributionsJournal articlesResearchpeer-review

Self-improvement for Computerized Adaptive Testing

Rudolph, Y., Neubauer, K. & Brefeld, U., 2026, Machine Learning and Knowledge Discovery in Databases - Research Track: European Conference, ECML PKDD 2025, Porto, Portugal, September 15–19, 2025, Proceedings. Ribeiro, R. P., Jorge, A. M., Soares, C., Gama, J., Pfahringer, B., Japkowicz, N., Larrañaga, P. & Abreu, P. H. (eds.). Cham: Springer International Publishing, Vol. 2. p. 70-86 17 p. (Lecture Notes in Computer Science; vol. 16014 LNCS).

Research output: Contributions to collected editions/worksArticle in conference proceedingsResearchpeer-review

DOI

Recently viewed

Activities

  1. Is a better understanding of assembly a way to help reassemble communities for restoration?
  2. Field Experimentation in Governance Research. Early insights from researching the effectiveness of public participation in implementing the EU Floods Directive
  3. Performing Contracts: BDSM, Performance Art and Aesthetics of Complexity
  4. “Corruption and Trust: A Model Design”
  5. Enabling Leadership for Transformational Teaching and Learning for sustainable development (ELTT) Workshop
  6. Learning Processes in a Video-based Learning Environment: What do teachers think and feel when they observe their own teaching or that of others?
  7. Robots versus Machines
  8. Computersimulation als Erkenntnismethode
  9. Multi-stakeholder learning in transdisciplinary settings
  10. Many Paths to Language 2020
  11. Open Codes? - 2019
  12. Meta analysis as a strategy of evidence-based participation research: The example of the project ‘EDGE’
  13. 403 Access Forbidden or: A Backend of One’s Own. Hacking Spaces Toward a Cyber_Feminist_City
  14. The Wellbeing Game: How to promote wellbeing using gamification: Adaptation of a gamified web application in German context
  15. Organizing in Times of Crisis: Collaborative and Open
  16. Coordinating Collective Agency – A Gradual Practice-Based Framework
  17. Explicit References in Chat-Based CSCL: Do They Faciliate Global Text Processing?
  18. Mapping Urban Information as an Interdisciplinary Method for Geography, Art and Architecture Representations

Publications

  1. Mirrored piezo servo hydraulic actuators for use in camless combustion engines and its Control with mirrored inputs and MPC
  2. Transductive support vector machines for structured variables
  3. Measuring Learning Styles with Questionnaires Versus Direct Observation of Preferential Choice Behavior in Authentic Learning Situations
  4. Performance of process-based models for simulation of grain N in crop rotations across Europe
  5. Overcoming Multi-legacy Application Challenges through Building Dynamic Capabilities for Low-Code Adoption
  6. Deconstructing the Theoretical Language of Process Research
  7. E-stability and stability of adaptive learning in models with private information
  8. Discourse, practice, policy and organizing
  9. A geometric approach for the design and control of an electromagnetic actuator to optimize its dynamic performance
  10. Foreign bias in institutional portfolio allocation
  11. Preventive Diagnostics for cardiovascular diseases based on probabilistic methods and description logic
  12. Optimization of waste management systems by integrating material fluxes, agents and regulatory mechanisms
  13. Is implicit Theory of Mind real but hard to detect?
  14. Pressure fault recognition and compensation with an adaptive feedforward regulator in a controlled hybrid actuator within engine applications
  15. Action Errors, Error Management, and Learning in Organizations
  16. Model based logistic monitoring for supply and assembly processes
  17. Assessing authenticity in modelling test items: deriving a theoretical model
  18. Analyzing the Influence of Knowledge Graph Information on Relation Extraction.
  19. You cannot not transact - Big Data und Transaktionalität
  20. Using Digitalization As An Enabler For Changeability In Production Systems In A Learning Factory Environment
  21. Finite element based determination and optimization of seam weld positions in porthole die extrusion of double hollow profile with asymmetric cross section
  22. Understanding the error-structure of Time-driven Activity-based Costing
  23. A luenberger observer for a quasi-static disturbance estimation in linear time invariant systems
  24. Integration durch soziale Kontrolle?
  25. The effect of yield surface curvature change by cross hardening on forming limit diagrams of sheets
  26. Relationships between language-related variations in text tasks, reading comprehension, and students’ motivation and emotions: A systematic review
  27. Reliability and Validity of Assessing User Satisfaction With Web-Based Health Interventions
  28. Developing a Complex Portrait of Content Teaching for Multilingual Learners via Nonlinear Theoretical Understandings