Unsupervised anomaly detection using an evolutionary extension of k-means algorithm. (2nd June 2008)
- Record Type:
- Journal Article
- Title:
- Unsupervised anomaly detection using an evolutionary extension of k-means algorithm. (2nd June 2008)
- Main Title:
- Unsupervised anomaly detection using an evolutionary extension of k-means algorithm
- Authors:
- Lu, Wei
Traore, Issa - Abstract:
- In this paper, we propose a new unsupervised anomaly detection framework for network intrusions. The framework consists of a new clustering algorithm named I-means and new anomalousness metrics named IP Weights. I-means is an evolutionary extension of k means algorithm that estimates automatically the number of clusters for a set of data. IP Weights allow the automatic conversion of regular packet features into a 3-dimensional numerical feature space. Online and offline evaluations show not only strong detection effectiveness, but also strong runtime efficiency, with response times falling within a few seconds ranges.
- Is Part Of:
- International journal of information and computer security. Volume 2:Number 2(2008)
- Journal:
- International journal of information and computer security
- Issue:
- Volume 2:Number 2(2008)
- Issue Display:
- Volume 2, Issue 2 (2008)
- Year:
- 2008
- Volume:
- 2
- Issue:
- 2
- Issue Sort Value:
- 2008-0002-0002-0000
- Page Start:
- 107
- Page End:
- 139
- Publication Date:
- 2008-06-02
- Subjects:
- intrusion detection -- unsupervised anomaly detection -- clustering algorithms -- Gaussian mixture model -- evolutionary computation -- information security -- computer security -- network intrusions
Computer security -- Periodicals
Information systems management -- Security measures -- Periodicals
Computer networks -- Security measures -- Periodicals
Information technology -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.inderscience.com/browse/index.php?journalCODE=ijics ↗
http://www.inderscience.com/ ↗ - Languages:
- English
- ISSNs:
- 1744-1765
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 8686.xml