{"title":"基于改进K-means算法的入侵检测研究","authors":"Shenghui Wang","doi":"10.1109/IBICA.2011.72","DOIUrl":null,"url":null,"abstract":"Traditional machine learning methods for intrusiondetection can only detect known attacks since these methodsclassify data based on what they have learned. New attacks areunknown and are difficult to detect because they have notlearned. In this paper, we present an improved k-meansclustering-based intrusion detection method, which trains onunlabeled data in order to detect new attacks. The result ofexperiments run on the KDD Cup 1999 data set shows theimprovement in detection rate and decrease in false positiverate and the ability to detect unknown intrusions.","PeriodicalId":158080,"journal":{"name":"2011 Second International Conference on Innovations in Bio-inspired Computing and Applications","volume":"61 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-12-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Research of Intrusion Detection Based on an Improved K-means Algorithm\",\"authors\":\"Shenghui Wang\",\"doi\":\"10.1109/IBICA.2011.72\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Traditional machine learning methods for intrusiondetection can only detect known attacks since these methodsclassify data based on what they have learned. New attacks areunknown and are difficult to detect because they have notlearned. In this paper, we present an improved k-meansclustering-based intrusion detection method, which trains onunlabeled data in order to detect new attacks. The result ofexperiments run on the KDD Cup 1999 data set shows theimprovement in detection rate and decrease in false positiverate and the ability to detect unknown intrusions.\",\"PeriodicalId\":158080,\"journal\":{\"name\":\"2011 Second International Conference on Innovations in Bio-inspired Computing and Applications\",\"volume\":\"61 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2011-12-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2011 Second International Conference on Innovations in Bio-inspired Computing and Applications\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IBICA.2011.72\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2011 Second International Conference on Innovations in Bio-inspired Computing and Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IBICA.2011.72","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 9
摘要
用于入侵检测的传统机器学习方法只能检测已知的攻击,因为这些方法基于它们所学到的内容对数据进行分类。新的攻击是未知的,很难检测到,因为它们没有学习。在本文中,我们提出了一种改进的基于k均值聚类的入侵检测方法,该方法对未标记的数据进行训练以检测新的攻击。在KDD Cup 1999数据集上运行的实验结果表明,该方法提高了检测率,减少了误报,并能够检测未知入侵。
Research of Intrusion Detection Based on an Improved K-means Algorithm
Traditional machine learning methods for intrusiondetection can only detect known attacks since these methodsclassify data based on what they have learned. New attacks areunknown and are difficult to detect because they have notlearned. In this paper, we present an improved k-meansclustering-based intrusion detection method, which trains onunlabeled data in order to detect new attacks. The result ofexperiments run on the KDD Cup 1999 data set shows theimprovement in detection rate and decrease in false positiverate and the ability to detect unknown intrusions.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
