A Comparative Study of Hidden Markov Model and Support Vector Machine in Anomaly Intrusion Detection

Jain, Ruchi and Abouzakhar, Nasser (2013) A Comparative Study of Hidden Markov Model and Support Vector Machine in Anomaly Intrusion Detection. International Journal of Internet Technology and Secured Transactions (JITST), 2 (1/2/3/). pp. 176-184. ISSN 1748-5703

Copy

This paper aims to analyse the performance of Hidden Markov Model (HMM) and Support Vector Machine (SVM) for anomaly intrusion detection. These techniques discriminate between normal and abnormal behaviour of network traffic. The specific focus of this study is to investigate and identify distinguishable TCP services that comprise of both normal and abnormal types of TCP packets, using J48 decision tree algorithm. The publicly available KDD Cup 1999 dataset has been used in training and evaluation of such techniques. Experimental results demonstrate that the HMM is able to classify network traffic with approximately 76% to 99% accuracy while SVM classifies it with approximately 80% to 99% accuracy.

Item Type	Article
Keywords	hidden markov model, support vector machine, distinguishable tcp services, anomaly intrusion detection
Date Deposited	15 May 2025 12:44
Last Modified	30 May 2025 23:56

Explore Further

Abouzakhar, Nasser

International Journal of Internet Technology and Secured Transactions (JITST)

visibility_off

picture_as_pdf

picture_as_pdf: A_Comparative_Study_of_Hidden_Markov_Model.pdf
subject: Draft Version
lock: Restricted to Repository staff only

Request Copy

Atom

BibTeX

OpenURL ContextObject in Span

OpenURL ContextObject

Dublin Core

MPEG-21 DIDL

Data Cite XML

EndNote

HTML Citation

METS

MODS

RIOXX2 XML

Reference Manager

Refer

ASCII Citation

Export

Downloads