J4 ›› 2009, Vol. 47 ›› Issue (05): 954-960.
Previous Articles Next Articles
HU Liang, LIN Wei-Wu, LIN Fei, LIU Xiao-Bo, JIN Gang
Received:
Online:
Published:
Contact:
Abstract:
This paper proposes an Anomaly Detection algorithm based on Improved Density Clustering(ADIDC). The improved algorithm adopts clustering features separately on individual characteristic arranges and weighting features by the correlativity between the features and the normal profile. It can solve the frequent problem of the high false positive rate on clustering in the application of anomaly detection. A series of experiments on well known KDD Cup 1999 dataset demonstrates that it has a lower false positive rate, especially ensuring high detection rate with respect to the traditional anomaly detection methods. The detection of the special attack which resembles the normal act is obviously improved. In addtion, the detection performace can be further optimized by feature selection via feature weights. It makes the proposed algorithm more suitable for the realtime detection.
Key words: intrusion detection; anomaly detection; clustering; density clustering; weight feature
CLC Number:
HU Liang, LIN Wei-Wu, LIN Fei, LIU Xiao-Bo, JIN Gang. Anomaly Detection Algorithm Based onImproved Density Clustering[J].J4, 2009, 47(05): 954-960.
0 / / Recommend
Add to citation manager EndNote|Reference Manager|ProCite|BibTeX|RefWorks
URL: http://xuebao.jlu.edu.cn/lxb/EN/
http://xuebao.jlu.edu.cn/lxb/EN/Y2009/V47/I05/954
Cited