Novel-Rule Based Intrusion Detection System
Keywords:
Intrusion Detection; Rule-based, Length-Decreasing Support, Association Rules, Data MiningAbstract
APT (Advanced Persistent Threat) could be a real risk to the web. With the assistance of malware,
attackers will remotely management infected machine and steal the private data. Redundant and irrelevant feature in
knowledge have caused a semi permanent downside in network traffic classification. These options not solely bog
down the method of classification however conjointly forestall a classifier from creating correct selections,
particularly once dealing with massive knowledge. The planned novel system placed at the network departure guide
that points toward effectively and expeditiously detects APT malware infections. During this paper, we tend to propose
a mutual data based mostly rule that analytically selects the best feature for classification. This mutual data based
mostly feature choice rule will handle linearly and non linearly dependent knowledge feature .Its effectiveness is
evaluated within the cases of network intrusion detection. Associate Intrusion Detection System (IDS), is constructed
exploitation the options chosen by our planned feature choice rule. To sight suspicious APT malware the system
utilizes malicious DNS analysis technique, and subsequently analyses the traffic of the scrutiny suspicious scientific
discipline utilizing anomaly-based and signature based mostly detection innovation.
