Detecting Computer Network Attacks Using a Multi-objective Evolutionary Programming Approach
ABSTRACT
Attacks against computer networks are becoming more sophisticated, with adversaries using new attacks or modifying existing attacks. This research uses two types of multi-objective approaches, lexicographic and Pareto-based, in a multi- objective evolutionary programming algorithm to develop a new method for detecting such attacks. The approach evolves finite state transducers to detect attacks; this approach may allow the system to detect attacks with features similar to known attacks. Initial testing shows the algorithm performs satisfactorily in generating finite state transducers capable of detecting simulated attacks.
AUTHORS
Graduate School of Engineering and Management, Air Force Institute of Technology, Wright Patterson Air Force Base, Dayton, OH
USA
Kevin P. Anchor received a B.S. in Electrical Engineering from Clemson University in 1991 and an M.S. in Electrical Engineering from the Air Force Institute of Technology in 1995. He is a Major in the United States Air Force and is currently a Ph.D. Candidate at the Air Force Institute of Technology. His research interests include information system security, evolutionary algorithms, and artificial intelligence.
Captain, United States Air Force
Jesse B. Zydallis received the B.S. and M.S. degrees in computer engineering from the New Jersey Institute of Technology in 1997 and 1998, respectively. He is a Captain in the United States Air Force and has had assignments in engineering and program management positions. He is currently a Ph.D candidate at the Air Force Institute of Technology.
Associate Professor of Computer Engineering, Air Force Institute of Technology
Wright-Patterson Air Force Base, OH
USA
Gregg Gunsch (Lt Col, USAF, retired) has a BSEE from the University of North Dakota (1979), MSEE from the Air Force Institute of Technology (1983), and a PhD in Electrical Engineering from the University of Illinois at Urbana-Champaign (1991). He is an Assistant Professor of Computer Engineering, currently responsible for the information systems security/assurance (information warfare) curriculum at the Air Force Institute of Technology.
Professor, Department of Electrical and Computer Engineering, Graduate School of Engineering and Management,
Air Force Institute of Technology, Wright-Patterson AFB, Dayton, OH
USA
Gary B. Lamont is Professor of Electrical and Computer Engineering, Department of Electrical and Computer Engineering, Graduate School of Engineering and Management, Air Force Institute of Technology, WPAFB, Dayton, OH, 45433, USA, B. of Physics, 1961; MSEE, 1967, PhD, 1970; University of Minnesota. His research interests include parallel and distributed computation, evolutionary computation, artificial immune systems, combinatorial optimisation problems, formal methods, software engineering, digital signal processing, intelligent an distributed control systems, computational and numerical methods, and computer aided design. Dr. Lamont has authored various textbooks and book chapters, and was also an engineering systems analyst for the Honeywell Corporation.
Published In
Journal of Information Warfare
The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.
Quick Links
Archive
