吉林大学学报(工学版) ›› 2009, Vol. 39 ›› Issue (05): 1314-1320.

• • Previous Articles     Next Articles

Method of anomaly detection based on fusion principal components match

LIU Yan-heng1,2,SUN Lei1,2,TIAN Da-xin1,2,WU Jing 1,2,ZHANG Feng-hua3   

  1. 1.College of Computer Science and Technology, Jilin University, Changchun 130012, China|2.Key Laboratory of Symbolic Computation and Knowledge Engineering of Ministry of Education, Jilin University, Changchun 130012, China;3.Jilin Oilfield Vocation Education Center,Songyuan 138000,China
  • Received:2008-03-14 Online:2009-09-01 Published:2009-09-01

PDF (PC)

696

Abstract:

    According to the expansion of data storage, a method of anomaly detection based on Fusion Principal Component Match (FPCM) is presented. First, the isolated points in the subnode data are removed and the stability of the principal component analysis is enhanced by clustering. Then the clustering center is transmitted to a center node, which can reduce the traffic of data between nodes and achieve the fusion principal components. The normal behavior model established by the conversion matrix of the principal component cluster centers can embody the characteristics of the overall data. Finally, the decision tree method is used to accelerate the matching speed. Experiment results show that the FPCM method can maintain a high detection rate of DOS, an overall detection rate of 97% is obtained; meanwhile, the false positives is controlled below 10%. The detection rate of this method is equal to that of the existing methods.

Key words: computer system organization, intrusion detection, principal component analysis, clustering, decision trees

CLC Number: 

  • TP393
[1] LIU Zhong-min,WANG Yang,LI Zhan-ming,HU Wen-jin. Image segmentation algorithm based on SLIC and fast nearest neighbor region merging [J]. Journal of Jilin University(Engineering and Technology Edition), 2018, 48(6): 1931-1937.
[2] GUI Chun, HUANG Wang-xing. Network clustering method based on improved label propagation algorithm [J]. Journal of Jilin University(Engineering and Technology Edition), 2018, 48(5): 1600-1605.
[3] LIU Zhe, XU Tao, SONG Yu-qing, XU Chun-yan. Image fusion technology based on NSCT and robust principal component analysis model with similar information [J]. Journal of Jilin University(Engineering and Technology Edition), 2018, 48(5): 1614-1620.
[4] ZHANG Man, SHI Shu-ming. Analysis of state transition characteristics for typical vehicle driving cycles [J]. 吉林大学学报(工学版), 2018, 48(4): 1008-1015.
[5] DONG Ying, CUI Meng-yao, WU Hao, WANG Yu-hou. Clustering wireless rechargeable sensor networks charging schedule based on energy prediction [J]. 吉林大学学报(工学版), 2018, 48(4): 1265-1273.
[6] DENG Jian-xun, XIONG Zhong-yang, DENG Xin. Improved DNALA algorithm based on spectral clustering matrix [J]. 吉林大学学报(工学版), 2018, 48(3): 903-908.
[7] GENG Qing-tian, YU Fan-hua, WANG Yu-ting, GAO Qi-kun. New algorithm for vehicle type detection based on feature fusion [J]. 吉林大学学报(工学版), 2018, 48(3): 929-935.
[8] LIU Xue-juan, YUAN Jia-bin, XU Juan, DUAN Bo-jia. Quantum k-means algorithm [J]. 吉林大学学报(工学版), 2018, 48(2): 539-544.
[9] HOU Xian-yao, CHEN Xue-wu. Use of public transit information market segmentation based onattitudinal factors [J]. 吉林大学学报(工学版), 2018, 48(1): 98-104.
[10] ZHAO Bo, QIN Gui-He, ZHAO Yong-Zhe, YANG Wen-Di. Public key cryptosystem based on semi-trapdoor one-way function [J]. 吉林大学学报(工学版), 2018, 48(1): 259-267.
[11] SUN Zong-yuan, FANG Shou-en. Hierarchical clustering algorithm of moving vehicle trajectories in entrances and exits freeway [J]. 吉林大学学报(工学版), 2017, 47(6): 1696-1702.
[12] LI Xian-sheng, MENG Fan-song, ZHENG Xuan-lian, REN Yuan-yuan, YAN Jia-hui. Driver's visual characteristics based on stress response [J]. 吉林大学学报(工学版), 2017, 47(5): 1403-1410.
[13] LI Jia-fei, SUN Xiao-yu. Clustering method for uncertain data based on spectral decomposition [J]. 吉林大学学报(工学版), 2017, 47(5): 1604-1611.
[14] LIU Zhong-min, LI Zhan-ming, LI Bo-hao, HU Wen-jin. Spectral clustering image segmentation based on sparse matrix [J]. 吉林大学学报(工学版), 2017, 47(4): 1308-1313.
[15] YU Bin-bin, WU Xin-yu, CHU Jian-feng, HU Liang. Signature protocol for wireless sensor network based on group key agreement [J]. 吉林大学学报(工学版), 2017, 47(3): 924-929.
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
Copyright © Journal of Jilin University(Engineering and Technology Edition), All Rights Reserved.
Tel: +86-431-85095297 Fax: +86-431-85094074 E-mail: xbgxb@jlu.edu.cn
Powered by Beijing Magtech Co. Ltd