A novel model for anomaly detection in network traffic based on kernel support vector machine. Issue 104 (May 2021)
- Record Type:
- Journal Article
- Title:
- A novel model for anomaly detection in network traffic based on kernel support vector machine. Issue 104 (May 2021)
- Main Title:
- A novel model for anomaly detection in network traffic based on kernel support vector machine
- Authors:
- Ma, Qian
Sun, Cong
Cui, Baojiang
Jin, Xiaohui - Abstract:
- Abstract: Machine learning models are widely used for anomaly detection in network traffic. Effective transformation of the raw traffic data into mathematical expressions and hyper-parameter adjustment are two important steps before training the machine learning classifier, which is used to predict whether the unknown traffic is normal or abnormal. In this paper, a novel model SVM-L is proposed for anomaly detection in network traffic. In particular, raw URLs are treated as natural language, and then transformed into mathematical vectors via statistical laws and natural language processing technique. They are used as the training data for the traffic classifier, the kernel Support Vector Machine (SVM). Based on the idea of the dual formulation of kernel SVM and Linear Discriminant Analysis (LDA), we propose an optimization model to adjust the hyper-parameter of the classifier. The corresponding problem is simply one-dimensional, and is easily solved by the golden section method. Numerical tests indicate that the proposed model achieves more than 99% accuracy on all tested datasets, and outperforms the state of the arts in terms of standard evaluation measurements.
- Is Part Of:
- Computers & security. Issue 104(2021)
- Journal:
- Computers & security
- Issue:
- Issue 104(2021)
- Issue Display:
- Volume 104, Issue 104 (2021)
- Year:
- 2021
- Volume:
- 104
- Issue:
- 104
- Issue Sort Value:
- 2021-0104-0104-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-05
- Subjects:
- Anomaly detection in network traffic -- Data transformation -- Linear discriminant analysis -- Hyper-parameter adjustment -- Kernel support vector machine
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2021.102215 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 16144.xml