Intrusion Detection with K-Means Clustering and OneR Classification

被引:0
|
作者
Muda, Z. [1 ]
Yassin, W. [1 ]
Sulaiman, M. N. [1 ]
Udzir, N. I. [1 ]
机构
[1] Univ Putra Malaysia, Fac Comp Sci & Informat Technol, Serdang 43400, Selangor, Malaysia
来源
JOURNAL OF INFORMATION ASSURANCE AND SECURITY | 2012年 / 7卷 / 06期
关键词
Intrusion Detection System; Malicious; Anomaly Detection; Hybrid Learning; Clustering; Classification;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Detecting malicious activities remains an elusive goal and indispensable challenge with the growing of prevalence networks attacks. In recent years, much attention has been given to anomaly detection to perform intrusion detection. Unfortunately, the major challenge of this approach is to maximize detection, accuracy and to minimize false alarm; i.e. failure in detecting certain type of attacks correctly. To overcome this problem, we propose a hybrid learning approach through a combination of K-Means clustering and One-R classification. The approach clusters all data into corresponding groups which match their natural behavior. Later, the clustered data are classified into the correct category using One-R classification. The validity of this approach is verified using the KDD Cup '99 benchmark dataset. Our experimental results demonstrate that our proposed approach performs better than existing techniques, with the accuracy, detection and false alarm rates of 99.26%, 99.33%, and 2.73%, respectively.
引用
收藏
页码:347 / 354
页数:8
相关论文
共 50 条
  • [1] Intrusion Detection based on K-Means Clustering and Naive Bayes Classification
    Muda, Z.
    Yassin, W.
    Sulaiman, M. N.
    Udzir, N. I.
    [J]. 2011 7TH INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY IN ASIA (CITA 11), 2011,
  • [2] Intrusion Detection Based on MinMax K-means Clustering
    Eslamnezhad, Mohsen
    Varjani, Ali Yazdian
    [J]. 2014 7TH INTERNATIONAL SYMPOSIUM ON TELECOMMUNICATIONS (IST), 2014, : 804 - 808
  • [3] Improved K-means clustering algorithm in intrusion detection
    Xiao, ShiSong
    Li, XiaoXu
    Liu, XueJiao
    [J]. 2008 PROCEEDINGS OF INFORMATION TECHNOLOGY AND ENVIRONMENTAL SYSTEM SCIENCES: ITESS 2008, VOL 2, 2008, : 771 - 775
  • [4] Intrusion Detection Based on Simulated Annealing and K-means Clustering
    Wu Jian
    [J]. PROCEEDINGS OF 2010 INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY AND INDUSTRIAL ENGINEERING, VOLS I AND II, 2010, : 1001 - 1005
  • [5] Application of An Improved K-means Clustering Algorithm in Intrusion Detection
    Yu, Dongmei
    Zhang, Guoli
    Chen, Hui
    [J]. PROCEEDINGS OF THE 2016 INTERNATIONAL CONFERENCE ON COMPUTER ENGINEERING, INFORMATION SCIENCE & APPLICATION TECHNOLOGY (ICCIA 2016), 2016, 56 : 277 - 283
  • [6] ANOMALY-BASED INTRUSION DETECTION THROUGH K-MEANS CLUSTERING AND NAIVES BAYES CLASSIFICATION
    Yassin, Warusia
    Udzir, Nur Izura
    Muda, Zaiton
    Sulaiman, Md. Nasir
    [J]. COMPUTING & INFORMATICS, 4TH INTERNATIONAL CONFERENCE, 2013, 2013, : 298 - 303
  • [7] Active Learning Intrusion Detection using k-Means Clustering Selection
    McElwee, Steven
    [J]. SOUTHEASTCON 2017, 2017,
  • [8] An Integration of K-Means Clustering and Naive Bayes Classifier for Intrusion Detection
    Varuna, S.
    Natesan, P.
    [J]. 2015 3RD INTERNATIONAL CONFERENCE ON SIGNAL PROCESSING, COMMUNICATION AND NETWORKING (ICSCN), 2015,
  • [9] Efficient K-means Algorithm in Intrusion Detection
    Yang, Wenjun
    [J]. PROCEEDINGS OF THE 2017 2ND INTERNATIONAL CONFERENCE ON MODELLING, SIMULATION AND APPLIED MATHEMATICS (MSAM2017), 2017, 132 : 193 - 195
  • [10] OCSVM model combined with K-means recursive clustering for intrusion detection in SCADA systems
    Maglaras, Leandros A.
    Jiang, Jianmin
    [J]. 2014 10TH INTERNATIONAL CONFERENCE ON HETEROGENEOUS NETWORKING FOR QUALITY, RELIABILITY, SECURITY AND ROBUSTNESS (QSHINE), 2014, : 133 - 134
12345