COD: online temporal clustering for outbreak detection
作者: Tomáš Šingliar , Denver H. Dash
DOI:
关键词:
摘要: We present Cluster Onset Detection (COD), a novel algorithm to aid in detection of epidemic outbreaks. COD employs unsupervised learning techniques an online setting partition the population into subgroups, thus increasing ability make over as whole by decreasing signal-to-noise ratio. The method is adaptive and able alter its clustering real-time without need for detailed background knowledge population. attempts detect cluster made up primarily infected hosts. argue that this technique largely complementary existing methods outbreak can generally be combined with one or more them. show empirical results applying problem detecting worm attack on system networked computers, thIs approximately 40% lower infection rate at false positive 1 per week than best previously reported data set achieved using HMM model customized task.
aaaipress.org 参考文章(20)
Evan Cooke, Michael Bailey, David Watson, Farnam Jahanian, Jose Nazario, None, The Internet Motion Sensor: A distributed global scoped Internet threat monitoring system ,(2004)
John Mark Agosta, Denver Dash, Abraham Bachrach, Eve Schooler, Jaideep Chandrashekar, Alex Newman, Branislav Kveton, When gossip is good: distributed probabilistic inference for detection of slow network intrusions national conference on artificial intelligence. pp. 1115- 1122 ,(2006)
Fabian Monrose, Moheeb Abu Rajab, Andreas Terzis, On the effectiveness of distributed worm monitoring usenix security symposium. pp. 15- 15 ,(2005)
Brad Karp, Hyang-Ah Kim, Autograph: toward automated, distributed worm signature detection usenix security symposium. pp. 19- 19 ,(2004)
John Mark Agosta, Jaideep Chandrashekar, Carlos Diuk-Wasser, Carl Livadas, An adaptive anomaly detector for worm detection usenix workshop on tackling computer systems problems with machine learning techniques. pp. 3- ,(2007)
WM Andrew, A Brigham, D Kaustav, W Weng-Keen, None, Handbook of biosurveillance : Elsevier Academic Press,. ,(2006)
Toni M. Rath, Maximo Carreras, Paola Sebastiani, Automated Detection of Influenza Epidemics with Hidden Markov Models Advances in Intelligent Data Analysis V. pp. 521- 532 ,(2003) , 10.1007/978-3-540-45231-7_48
K.G. Anagnostakis, M.B. Greenwald, S. Ioannidis, A.D. Keromytis, Dekai Li, A cooperative immunization system for an untrusting Internet international conference on networks. pp. 403- 408 ,(2003) , 10.1109/ICON.2003.1266224
Vern Paxson, Bro: a system for detecting network intruders in real-time Computer Networks. ,vol. 31, pp. 2435- 2463 ,(1999) , 10.1016/S1389-1286(99)00112-7
David Maxwell Chickering, David Heckerman, Efficient Approximations for the MarginalLikelihood of Bayesian Networks with Hidden Variables Machine Learning. ,vol. 29, pp. 181- 212 ,(1997) , 10.1023/A:1007469629108