A Geometric Framework for Unsupervised Anomaly Detection
作者: Eleazar Eskin , Andrew Arnold , Michael Prerau , Leonid Portnoy , Sal Stolfo
DOI: 10.1007/978-1-4615-0953-0_4
关键词: Intrusion detection system 、 Data set 、 Artificial intelligence 、 Pattern recognition 、 Feature vector 、 Kernel (statistics) 、 System call 、 Computer science 、 Anomaly detection 、 Feature (computer vision) 、 Data mapping
摘要: Most current intrusion detection systems employ signature-based methods or data mining-based which rely on labeled training data. This is typically expensive to produce. We present a new geometric framework for unsupervised anomaly detection, are algorithms that designed process unlabeled In our framework, elements mapped feature space vector ℛd. Anomalies detected by determining points lies in sparse regions of the space. two maps mapping Our first map data-dependent normalization we apply network connections. second spectrum kernel system call traces. three detecting lie evaluate performing experiments over records from KDD CUP 1999 set and traces Lincoln Labs DARPA evaluation.
springer.com
sci-hub.st 参考文章(30)
Nong Ye, A Markov Chain Model of Temporal Behavior for Anomaly Detection information assurance and security. ,(2000)
Carla E. Brodley, Terran Lane, Sequence Matching and Learning in Anomaly Detection for Computer Security ,(1997)
Aaron Schwartzbard, Anup K. Ghosh, A study in using neural networks for anomaly and misuse detection usenix security symposium. pp. 12- 12 ,(1999)
Salvatore J. Stolfo, Wei Fan, Ensemble-based Adaptive Intrusion Detection. siam international conference on data mining. pp. 41- 58 ,(2002)
John C. Platt, Fast training of support vector machines using sequential minimal optimization Advances in kernel methods. pp. 185- 208 ,(1999)
Foster Provost, R Fawcett, T, Kohavi, The Case against Accuracy Estimation for Comparing Induction Algorithms international conference on machine learning. pp. 445- 453 ,(1998)
Eleazar Eskin, Anomaly Detection over Noisy Data using Learned Probability Distributions international conference on machine learning. pp. 255- 262 ,(2000) , 10.7916/D8C53SKF
OL Mangasarian, A Smola, P Bartlett, B Schölkopf, D Schuurmans, Advances in Large Margin Classifiers MIT Press. ,(2000)
Raymond T. Ng, Edwin M. Knorr, Algorithms for Mining Distance-Based Outliers in Large Datasets very large data bases. pp. 392- 403 ,(1998)
D. Haussler, Convolution kernels on discrete structures Tech. Rep.. ,(1999)