Skip to Main Content
The intrusion detection system (IDS) generally uses the misuse detection model based on rules because this model has low false alarm rates. However, the rule based IDSs are not efficient for mutated attacks, because they need additional rules for the variations of the attacks. In this paper, we propose an intrusion detection system using the principal component analysis (PCA) and the time delay neural network (TDNN). Packets on the network can be considered as gray images of which pixels represent bytes of the packets. From these continuous packet images, we extract principal components. And these components are used as an input of a TDNN classifier that discriminates between normal and abnormal packet flows. The system deals well with various mutated attacks, as well as well known attacks.