Anomaly Detection Method Based on CSABased Unsupervised Fuzzy Clustering Algorithm

doi:10.13190/jbupt.200504.103.xianjq

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2005, Vol. 28 ›› Issue (4): 103-106.doi: 10.13190/jbupt.200504.103.xianjq

• Reports • Previous Articles Next Articles

Anomaly Detection Method Based on CSABased Unsupervised Fuzzy Clustering Algorithm

XIAN Jiqing1,LANG Fenghua2

1School of Automation, Chongqing University of Posts and Telecommunications, Chongqing 400065, China; 2School of Computer, Chongqing University of Posts and Telecommunications, Cho ngqing 400065, Chin

Online:2005-08-28 Published:2005-08-28

Abstract

Abstract:

A novel intrusion detection method based on clonal selection algorithm (CSA)based unsupervised fuzzy clustering algorithm was presented for solving the problem of fuzzy kmeans algorithm which is much more sensitive to the initialization and is easy to fall intolocal optimization. With the method, the global optimal clustering with clonal operator which combines the evolutionary search, the global search, the stochastic search and the local search could be quickly obtained, in the mean time, the abnormal network behavior patterns with fuzzy detection algorithm could be detected. The benefit of this algorithm is that it does not need the labeled trainingdata sets and it could detect unknown intrusion. Simulation results show that the method mentioned above will be able to detect unknown intrusions with lower false positive rate and higher detection rate.

Key words: anomaly detection, fuzzy clustering, clonal selection algorithm, unsupervised fuzzy kmeans algorithm

CLC Number:

TP393.08

XIAN Jiqing1,LANG Fenghua2. Anomaly Detection Method Based on CSABased Unsupervised Fuzzy Clustering Algorithm[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2005, 28(4): 103-106.

[1]	HUO Wei-gang, WANG Xing, LIANG Rui. An Anomaly Detection Method Combining Mutual Information Estimation with Adversarial Autoencoder [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(5): 28-34.
[2]	JI Xing, HUANG Tao, E Xin-hua, SUN Li. A DNS Query Anomaly Detection Algorithm Based on Log Information [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(6): 83-89.
[3]	LIU Yong-li, GUO Cheng-yi, WANG Heng-da, CHAO Hao. Incremental Fuzzy C-Ordered Means Clustering [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(4): 29-36.
[4]	QUI Xue-song, ZHANG Xun, SONG Yan-bin, ZHAO Bing, XU Si-ya. Two-Stage Traffic Anomaly Detection Method Based on Entropy and Linear Relation [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(4): 56-62.
[5]	YING Fei-hao, XING Ning-zhe, JI Yu-tong, JI Chen-chen, LI Wen-jing. KTLAD Based Traffic Anomaly Detection Algorithm of Electric Power Data Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(s1): 108-111.
[6]	WANG Xiao-jun, FU Chao. Enhancing Scalability and Accuracy of Collaborative Filtering Using Fuzzy Blocking [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(1): 74-78.
[7]	LIU Yong-li, WAN Xing. Fuzzy Tri-Clustering Based on Information Bottleneck [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(3): 70-74.
[8]	WANG Xiao-jun. A Distributed Hybrid Collaborative Filtering Method in Recommender Systems [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(2): 25-29.
[9]	ZHU Chun-ge, ZHANG Zhe-yu, LIU Xin-ran, SUN Bin, ZHANG Hong. Research on Fuzzy Clustering Based Algorithm for Resource Scheduling in Virtual Computing Environment [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(s1): 6-9,19.
[10]	ZHANG Le-jun, GUO Lin, ZHANG Jian-pei, YANG Jing, XIA Lei. Anomaly Detection for Distributed System Based on Measurement Attributes Analysis [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2013, 36(6): 69-73.
[11]	LU Tian-liang, ZHENG Kang-feng, LIU Ying-qing, HU Ying, WU Bin. Virus Detection Model Based on Dynamic Clonal Selection Algorithm [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2013, 36(3): 39-43.
[12]	. A Dynamic Compuation Approach to Determining the  Threshold in Network Anomaly Detection [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2011, 34(2): 45-49.
[13]	QIU Xue-song;CHEN Jian;GUO Hai-sheng;GAO Zhi-peng. Anomaly Traffic Integrated Detection Model for Enterprise IT Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(6): 28-31.
[14]	JING Da-hai1 ， LIU Xiao-ping2 . On-line Fuzzy Identifying Physical Parameters of Joint Moving State Robots [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(1): 52-56.
[15]	LV Shuwang1，LIU Heng1，SHEN Chang xiang. Traffic Periodic Analysis and Anomaly Detection on TCP/IP Backbone Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2005, 28(6): 1-4.

Anomaly Detection Method Based on CSABased Unsupervised Fuzzy Clustering Algorithm

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments