6533b874fe1ef96bd12d6091

RESEARCH PRODUCT

Intrusion Detection with Interpretable Rules Generated Using the Tsetlin Machine

Vladimir A. OleshchukSasanka N. RanasingheHarsha S. Gardiyawasam PussewalageK. Darshana AbeyrathnaOle-christoffer Granmo

subject

Artificial neural networkbusiness.industryComputer science0206 medical engineeringDecision tree02 engineering and technologyIntrusion detection systemMachine learningcomputer.software_genreRandom forestSupport vector machineStatistical classificationKnowledge extraction0202 electrical engineering electronic engineering information engineering020201 artificial intelligence & image processingArtificial intelligencebusinesscomputer020602 bioinformaticsInterpretability

description

The rapid deployment in information and communication technologies and internet-based services have made anomaly based network intrusion detection ever so important for safeguarding systems from novel attack vectors. To this date, various machine learning mechanisms have been considered to build intrusion detection systems. However, achieving an acceptable level of classification accuracy while preserving the interpretability of the classification has always been a challenge. In this paper, we propose an efficient anomaly based intrusion detection mechanism based on the Tsetlin Machine (TM). We have evaluated the proposed mechanism over the Knowledge Discovery and Data Mining 1999 (KDD’99) dataset and the experimental results demonstrate that the proposed TM based approach is capable of achieving superior classification performance in comparison to several simple Multi-Layered Artificial Neural Networks, Support Vector Machines, Decision Trees, Random Forest, and K-Nearest Neighbor machine learning algorithms while preserving the interpretability.

yearjournalcountryeditionlanguage
2020-12-012020 IEEE Symposium Series on Computational Intelligence (SSCI)
https://doi.org/10.1109/ssci47803.2020.9308206