location: Current position: Home >> Scientific Research >> Paper Publications

An adaptive clustering algorithm for intrusion detection

Hits:

Indexed by:会议论文

Date of Publication:2006-01-01

Included Journals:CPCI-S

Page Number:1443-1447

Key Words:clustering; data mining intrusion detection; wavelet transforms

Abstract:In this paper, we introduce an adaptive clustering algorithm for intrusion detection based on wavecluster which was introduced by Gholamhosein in 1999 and used with success in image processing. Because of the non-stationary characteristic of network traffic, we extend and develop an adaptive wavecluster algorithm for intrusion detection. Using the multiresolution property of wavelet transforms, we can effectively identify arbitrarily shaped clusters at different scales and degrees of detail, moreover, applying wavelet transform removes the noise from the original feature space and make more accurate cluster found. Experimental results on KDD-99 intrusion detection dataset show the efficiency and accuracy of this algorithm. A detection rate above 96% and a false alarm rate below 3% are achieved. The time complexity of the adaptive wavecluster algorithm is O(N),which is comparatively low than other algorithm.

Pre One:基于WinCE.net的嵌入式监控软件设计与实现

Next One:一种快速Snort入侵检测系统研究