Skip to Main Content
In this paper, a class association rule mining approach based on Genetic Network Programming (GNP) for detecting network intrusion combining misuse detection and anomaly detection is proposed. The proposed approach is an extension of the intrusion detection approach using GNP, so it can detect and distinguish normal, known intrusion and unknown intrusion. The simulation result shows that the detection rate is improved compared with traditional intrusion detection approach, and normal, known intrusion and unknown intrusion are distinguished with high accuracy.
Date of Conference: 18-21 Aug. 2009