Open Access

ARTICLE

Real-Time Network Intrusion Prevention System Using Incremental Feature Generation

Yeongje Uhm¹, Wooguil Pak^2,*

1 Research and Business Development Foundation, Yeungnam University, Gyeongsan, Gyeongbuk, 38541, Korea
2 Department of Information and Communication Engineering, Yeungnam University, Gyeongsan, Gyeongbuk, 38541, Korea

* Corresponding Author: Wooguil Pak. Email:

Computers, Materials & Continua 2022, 70(1), 1631-1648. https://doi.org/10.32604/cmc.2022.019667

Received 21 April 2021; Accepted 28 May 2021; Issue published 07 September 2021

Abstract

Security measures are urgently required to mitigate the recent rapid increase in network security attacks. Although methods employing machine learning have been researched and developed to detect various network attacks effectively, these are passive approaches that cannot protect the network from attacks, but detect them after the end of the session. Since such passive approaches cannot provide fundamental security solutions, we propose an active approach that can prevent further damage by detecting and blocking attacks in real time before the session ends. The proposed technology uses a two-level classifier structure: the first-stage classifier supports real-time classification, and the second-stage classifier supports accurate classification. Thus, the proposed approach can be used to determine whether an attack has occurred with high accuracy, even under heavy traffic. Through extensive evaluation, we confirm that our approach can provide a high detection rate in real time. Furthermore, because the proposed approach is fast, light, and easy to implement, it can be adopted in most existing network security equipment. Finally, we hope to mitigate the limitations of existing security systems, and expect to keep networks faster and safer from the increasing number of cyber-attacks.

---

Keywords

---