• DocumentCode
    1653761
  • Title

    Immunity-Based Dynamic Anomaly Detection Method

  • Author

    Feixian Sun ; Qiusheng Zheng ; Tao Li

  • Author_Institution
    Sch. of Comput. Sci., Zhongyuan Univ. of Technol., Zhengzhou
  • fYear
    2008
  • Firstpage
    644
  • Lastpage
    647
  • Abstract
    In many of actual anomaly detection systems, the training data is only partially composed by the normal elements; simultaneously, self and non-self space often vary over time, so these systems often build profiles based on some of self elements and adjust themselves to adapt network varieties. However, these techniques need a large number of self elements to build the profile and lack adaptability. Aiming at the problems of traditional techniques, an immunity-based dynamic method for network anomaly detection, referred to as WAD, is proposed in this paper. WAD builds an appropriate profile using only a subset of normal elements and adapts the varieties of self and non-self space, which adjust adaptively the self radius, the detection radius, and numbers of detectors to amend the built profile. The experiment results show that WAD is an efficient solution to anomaly detection, and has the features of high detection rate, low false alarm rate, self-learning, and adaptation.
  • Keywords
    computer networks; security of data; WAD method; immunity based dynamic anomaly detection; network anomaly detection; self elements; Biology; Computational Intelligence Society; Computer science; Computer security; Computer vision; Detectors; Immune system; Space technology; Sun; Training data;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Bioinformatics and Biomedical Engineering, 2008. ICBBE 2008. The 2nd International Conference on
  • Conference_Location
    Shanghai
  • Print_ISBN
    978-1-4244-1747-6
  • Electronic_ISBN
    978-1-4244-1748-3
  • Type

    conf

  • DOI
    10.1109/ICBBE.2008.157
  • Filename
    4535037