Design of network threat detection and classification based on machine learning on cloud computing

To respond to recent network threats that are using increasingly intelligent techniques, the intelligent security technology on cloud computing is required. Especially it supports small and medium enterprises to build IT security solution with low cost and less effort because it is provided as Security as a Service on a cloud environment. In this paper, we particularly propose the network threat detection and classification method based on machine learning, which is a part of the intelligent threat analysis technology. In order to improve the performance of detection and classification of network threat, it was built in a hybrid way such as applying an unsupervised learning approach with unlabeled data, naming clusters with labeled data, and using a supervised learning approach for feature selection.