Back Room Front Room 2

More documents

Recommendations

Info

214 ENTERPRISE INFORMATION SYSTEMS VI 4 CONNECTIONIST PARADIGMS The artificial neural network (ANN) methodology enables us to design useful nonlinear systems accepting large numbers of inputs, with the design based solely on instances of input-output relationships. 4.1 Resilient <strong>Back</strong> Propagation (RP) The purpose of the resilient backpropagation training algorithm is to eliminate the harmful effects of the magnitudes of the partial derivatives. Only the sign of the derivative is used to determine the direction of the weight update; the magnitude of the derivative has no effect on the weight update. The size of the weight change is determined by a separate update value. The update value for each weight and bias is increased by a factor whenever the derivative of the performance function with respect to that weight has the same sign for two successive iterations. The update value is decreased by a factor whenever the derivative with respect that weight changes sign from the previous iteration. If the derivative is zero, then the update value remains the same. Whenever the weights are oscillating the weight change will be reduced. If the weight continues to change in the same direction for several iterations, then the magnitude of the weight change will be increased (Riedmiller, 1993). Figure1: Intrusion Detection Data Distribution 4.2 Scaled Conjugate Gradient Algorithm (SCG) The scaled conjugate gradient algorithm is an implementation of avoiding the complicated line search procedure of conventional conjugate gradient algorithm (CGA). According to the SCGA, the Hessian matrix is approximated by ' ' " E ( wk � � k pk ) � E ( wk ) E ( wk ) pk � � �k pk � k where E' and E" are the first and second derivative information of global error function E (wk). The other terms pk, �k and �k represent the weights, search direction, parameter controlling the change in weight for second derivative approximation and parameter for regulating the indefiniteness of the Hessian. In order to get a good quadratic approximation of E, a mechanism to raise and lower �k is needed when the Hessian is positive definite (Moller, 1993). 4.3 One-Step-Secant Algorithm (OSS) Quasi-Newton method involves generating a sequence of matrices G (k) that represents increasingly accurate approximations to the inverse Hessian (H -1 ). Using only the first derivative information of E the updated expression is as follows: T (k) T (k) (k�1) (k) pp (G v) v G T (k) T G � G � � � (v G v)uu T T (k) p v v G v where
(k� 1) (k) (k�1) (k) p � w � w (k) � g p G v u � T � p v T (k) v G v and T represents transpose of a matrix. The problem with this approach is the requirement of computation and storage of the approximate Hessian matrix for every iteration. The One-Step-Secant (OSS) is an approach to bridge the gap between the conjugate gradient algorithm and the quasi-Newton (secant) approach. The OSS approach doesn’t store the complete Hessian matrix; it assumes that at each iteration the previous Hessian was the identity matrix. This also has the advantage that the new search direction can be calculated without computing a matrix inverse (Bishop, 1995). 4.4 Support Vector Machines (SVM) The SVM approach transforms data into a feature space F that usually has a huge dimension. It is interesting to note that SVM generalization depends on the geometrical characteristics of the training data, not on the dimensions of the input space (Bishop, 1995; Joachims, 1998). Training a support vector machine (SVM) leads to a quadratic optimization problem with bound constraints and one linear equality constraint. Vapnik (Vladimir, 1995) shows how training a SVM for the pattern recognition problem leads to the following quadratic optimization problem (Joachims, 2000): Minimize: l l l 1 W ( � ) � �� i � � � yi y j� i� j k( xi , x j ) (1) 2 i�1 i�1 j�1 l Subject to � yi� i i�1 �i : 0 � � i � C (2) where l is the number of training examples � is a vector of l variables and each component �i corresponds to a training example (xi, yi). The solution of (1) is the vector * � for which (1) is minimized and (2) is fulfilled. 5 EXPERIMENT SETUP INTRUSION DETECTION SYSTEMS USING ADAPTIVE REGRESSION SPLINES , v � g In our experiments, we perform 5-class classification. The (training and testing) data set contains 11982 randomly generated points from the data set representing the five classes, with the number of data from each class proportional to its size, except that the smallest classes are completely , included. The normal data belongs to class1, probe belongs to class 2, denial of service belongs to class 3, user to super user belongs to class 4, remote to local belongs to class 5. A different randomly selected set of 6890 points of the total data set (11982) is used for testing MARS, SVMs and ANNs. Overall accuracy of the classifiers is given in Tables 1-4. Class specific classification of the classifiers is given in Table 5. 5.1 MARS We used 5 basis functions and selected a setting of minimum observation between knots as 10. The MARS training mode is being set to the lowest level to gain higher accuracy rates. Five MARS models are employed to perform five class classifications (normal, probe, denial of service, user to root and remote to local). We partition the data into the two classes of “Normal” and “Rest” (Probe, DoS, U2Su, R2L) patterns, where the Rest is the collection of four classes of attack instances in the data set. The objective is to separate normal and attack patterns. We repeat this process for all classes. Table 1 summarizes the test results of the experiments. 5.2 Neural Network The same data set described in section 2 is being used for training and testing different neural network algorithms. The set of 5092 training data is divided in to five classes: normal, probe, denial of service attacks, user to super user and remote to local attacks. Where the attack is a collection of 22 different types of instances that belong to the four classes described in section 2, and the other is the normal data. In our study we used two hidden layers with 20 and 30 neurons each and the networks were trained using training functions described in Table 2. The network was set to train until the desired mean square error of 0.001 was met. As multi-layer feed forward networks are capable of multi-class classifications, we partition the data into 5 classes (Normal, Probe, Denial of Service, and User to Root and Remote to Local). Figure 2: MARS data estimation using splines and knots 215
Page 1 and 2:
www.dbeBooks.com - An Ebook Library
Page 3 and 4:
A C.I.P. Catalogue record for this
Page 5 and 6:
vi TABLE OF CONTENTS PART 1 - DATAB
Page 7 and 8:
viii TABLE OF CONTENTS A WIRELESS A
Page 9 and 10:
CONFERENCE COMMITTEE Honorary Presi
Page 11 and 12:
Hung, P. (AUSTRALIA) Jahankhani, H.
Page 13 and 14:
Invited Papers
Page 15 and 16:
2 ENTERPRISE INFORMATION SYSTEMS VI
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
10 ENTERPRISE INFORMATION SYSTEMS V
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
EVOLUTIONARY PROJECT MANAGEMENT: MU
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
MANAGING COMPLEXITY OF ENTERPRISE I
Page 45 and 46:
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53 and 54:
Page 55 and 56:
Page 57 and 58:
Page 59 and 60:
Page 61 and 62:
Page 63 and 64:
Page 65 and 66:
Page 67 and 68:
ASSESSING EFFORT PREDICTION MODELS
Page 69 and 70:
Page 71 and 72:
Page 73 and 74:
Page 75 and 76:
ORGANIZATIONAL AND TECHNOLOGICAL CR
Page 77 and 78:
Page 79 and 80:
ASAP Processes W Project Kickoff A
Page 81 and 82:
Page 83 and 84:
since it means changing the relevan
Page 85 and 86:
ACME-DB: AN ADAPTIVE CACHING MECHAN
Page 87 and 88:
ACME-DB: AN ADAPTIVE CACHING MECHAN
Page 89 and 90:
Hit Rate (%) ACME-DB: AN ADAPTIVE C
Page 91 and 92:
5.3.6 Effect on all Policies by Int
Page 93 and 94:
ACKNOWLEDGEMENTS We would like to t
Page 95 and 96:
This paper describes the data sampl
Page 97 and 98:
The major limit A of the operation
Page 99 and 100:
RELATIONAL SAMPLING FOR DATA QUALIT
Page 101 and 102:
TOWARDS DESIGN RATIONALES OF SOFTWA
Page 103 and 104:
((Brown et al., 1998), pp. 159-190,
Page 105 and 106:
sive data filtering, presentation (
Page 107 and 108:
• implementation changes in servi
Page 109 and 110:
MEMORY MANAGEMENT FOR LARGE SCALE D
Page 111 and 112:
Data Rate [bytes/sec] 1600000 14000
Page 113 and 114:
E.g., DV Camcorder Camera Packets (
Page 115 and 116:
Procedure CheckOptimal (n rs 1 ...n
Page 117 and 118:
MEMORY MANAGEMENT FOR LARGE SCALE D
Page 119 and 120:
PART 2 Artificial Intelligence and
Page 121 and 122:
110 ENTERPRISE INFORMATION SYSTEMS
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
DYNAMIC MULTI-AGENT BASED VARIETY F
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Page 139 and 140:
Page 141 and 142:
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
AN EXPERIENCE IN MANAGEMENT OF IMPR
Page 171 and 172:
Page 173 and 174: 162 ENTERPRISE INFORMATION SYSTEMS
Page 179 and 180: ANALYSIS AND RE-ENGINEERING OF WEB
Page 181 and 182: Module p0 Customer Itinerary Send I
Page 183 and 184: departments: the marketing dept. se
Page 185 and 186: • An acyclic module M is usable,
Page 187 and 188: BALANCING STAKEHOLDER’S PREFERENC
Page 189 and 190: The scenarios will provide an abstr
Page 191 and 192: BALANCING STAKEHOLDER'S PREFERENCES
Page 193 and 194: BALANCING STAKEHOLDER'S PREFERENCES
Page 195 and 196: A POLYMORPHIC CONTEXT FRAME TO SUPP
Page 197 and 198: A POLYMORPHIC CONTE XT FRAME TO SUP
Page 203 and 204: FEATURE MATCHING IN MODEL-BASED SOF
Page 205 and 206: combination of solution domains - a
Page 207 and 208: • features for all the concepts:
Page 209 and 210: Existence In both steps it is possi
Page 211 and 212: matching strategies are maximal, mi
Page 213 and 214: TOWARDS A META MODEL FOR DESCRIBING
Page 215 and 216: elementary message (ae-message) can
Page 217 and 218: problems on a pragmatic level, whic
Page 219 and 220: TOWARDS A META MODEL FOR DESCRIBING
Page 221 and 222: INTRUSION DETECTION SYSTEMS USING A
Page 223: INTRUSION DETECTION SYSTEMS USING A
Page 227 and 228: Table 5: Performance Comparison of
Page 229 and 230: A USER-CENTERED METHODOLOGY TO GENE
Page 231 and 232: carries out the second phase of the
Page 233 and 234: 1 1 1 1 2 PROCESS STORE ENTITY EDGE
Page 235 and 236: constraints rules. KOGGE (Ebert et
Page 237 and 238: PART 4 Software Agents and Internet
Page 275 and 276:
Page 277 and 278:
Page 279 and 280:
Page 281 and 282:
Page 283 and 284:
Page 285 and 286:
CABA 2 L A BLISS PREDICTIVE COMPOSI
Page 287 and 288:
y disables evidencing severe mental
Page 289 and 290:
Figure 4: Symbols emission in DAR-H
Page 291 and 292:
they evidence a generalization erro
Page 293 and 294:
A METHODOLOGY FOR INTERFACE DESIGN
Page 295 and 296:
and mobility loss coupled with redu
Page 297 and 298:
Tradeoff: The default input is poss
Page 299 and 300:
Sessions on the VABS which are held
Page 301 and 302:
A CONTACT RECOMMENDER SYSTEM FOR A
Page 303 and 304:
A CONTACT RECOMMENDER SYSTEM FOR A
Page 305 and 306:
- "Going to the sources". The user
Page 307 and 308:
Here are the matrix W and P for our
Page 309 and 310:
EMOTION SYNTHESIS IN VIRTUAL ENVIRO
Page 311 and 312:
theme turns out to be surprisingly
Page 313 and 314:
6 FROM FEATURES TO SYMBOLS 6.1 Face
Page 315 and 316:
sions are described by different em
Page 317 and 318:
Electronic Imaging 2000 Conference
Page 319 and 320:
to the accessibility problem for th
Page 321 and 322:
Figure 3: Hierarchical View of the
Page 323 and 324:
4 CONCLUSIONS AND FUTURE WORK On th
Page 325 and 326:
PERSONALISED RESOURCE DISCOVERY SEA
Page 327 and 328:
Page 329 and 330:
profile, the user defines his curre
Page 331 and 332:
Page 333 and 334:
Abdelkafi, N. .....................
show all

Back Room Front Room 2

Create successful ePaper yourself

Delete template?

Save as template?