A Semi-Supervised Clustering Methodology for Anomaly Based Intrusion Detection
Journal: INTERNATIONAL JOURNAL OF ELECTRONICS & DATA COMMUNICATION (Vol.3, No. 3)Publication Date: 2013-04-15
Authors : Evgeniya Nikolova; Veselina Jecheva;
Page : 40-46
Keywords : Anomaly-based IDS; 2-means clustering; classification tree; Jaro distance; Jaro-Winkler distance; Jaccard index; Dunn index; C-index;
Abstract
In this paper we present a simple clustering algorithm based on a 2-means clustering anomaly detection technique and a classification tree. A set of training data consisting of normal data as well as anomalies data are divided into two clusters which are represented by their centroids. The corresponding cluster centroids are used as patterns for computationally efficient distance-based detection of anomalies in new monitoring data. Methods for clustering, training and detection are provided.? Results show that the proposed method is efficient in terms of the Dunn index. Measuring of performance are evaluated with Dunn index and C-index.
Other Latest Articles
- Adaptive Channel Equalization Using Tuning-Free Non-Parametric NLMS with Variable Step Size
- PIEZOELECTRIC GENERATION IN IT INDUSTRY FOR GREEN COMPUTING : A REVIEW
- SOLAR POWERED WIRELESS SENSOR NETWORK : A REVIEW
- An Optimization of Process Scheduling Based on Heuristic GA
- Role of Fragmentation in Distributed Database System
Last modified: 2016-07-04 17:23:29