Unsupervised Anomaly Based Network Intrusion Detection Using Farthest First and Hierarchical Conceptual Clustering.
作者: Mrutyunjaya Panda , Manas Ranjan Patra
DOI:
关键词:
摘要: With the increased usage of computer networks, security becomes a critical issue. Recently, data mining methods have gained lot attention in addressing network issues, including intrusion detection. Consequently, unsupervised learning been given much importance for anomaly based In this paper, we investigate new clustering algorithms like farthest first and hierarchical conceptual (COBWEB) building our proposed detection model. We evaluated model using KDDCup’99 benchmark dataset. Our research shows that with five class classifications enable us to build an efficient high rate acceptable false positive comparison other existing detecting rare attacks.
researchgate.net 参考文章(14)
Douglas Fisher, Improving inference through conceptual clustering national conference on artificial intelligence. pp. 461- 465 ,(1987)
Eleazar Eskin, Anomaly Detection over Noisy Data using Learned Probability Distributions international conference on machine learning. pp. 255- 262 ,(2000) , 10.7916/D8C53SKF
S. Benjawan, O. Siriporn, Anomaly Detection and Characterization to Classify Traffic Anomalies Case Study: TOT Public Company Limited Network World Academy of Science, Engineering and Technology, International Journal of Computer, Electrical, Automation, Control and Information Engineering. ,vol. 3, pp. 15- 23 ,(2009)
SHI ZHONG, TAGHI M. KHOSHGOFTAAR, NAEEM SELIYA, CLUSTERING-BASED NETWORK INTRUSION DETECTION International Journal of Reliability, Quality and Safety Engineering. ,vol. 14, pp. 169- 187 ,(2007) , 10.1142/S0218539307002568
Wenke Lee, Salvatore J. Stolfo, Kui W. Mok, Mining in a data-flow environment: experience in network intrusion detection knowledge discovery and data mining. pp. 114- 124 ,(1999) , 10.1145/312129.312212
Itzhak Levin, KDD-99 classifier learning contest LLSoft's results overview ACM SIGKDD Explorations Newsletter. ,vol. 1, pp. 67- 75 ,(2000) , 10.1145/846183.846201
Y. Guan, A.A. Ghorbani, N. Belacel, Y-means: a clustering method for intrusion detection canadian conference on electrical and computer engineering. ,vol. 2, pp. 1083- 1086 ,(2003) , 10.1109/CCECE.2003.1226084
Jeffrey Erman, Martin Arlitt, Anirban Mahanti, Traffic classification using clustering algorithms Proceedings of the 2006 SIGCOMM workshop on Mining network data - MineNet '06. pp. 281- 286 ,(2006) , 10.1145/1162678.1162679
AP Bradley, RPW Duin, P Paclik, TCW Landgrebe, Precision-recall operating characteristic (P-ROC) curves in imprecise environments international conference on pattern recognition. ,vol. 4, pp. 123- 127 ,(2006) , 10.1109/ICPR.2006.941
H.G. Kayacik, A.N. Zincir-Heywood, M.I. Heywood, On the capability of an SOM based intrusion detection system international joint conference on neural network. ,vol. 3, pp. 1808- 1813 ,(2003) , 10.1109/IJCNN.2003.1223682