A Novel Method of Outliers within Data Streams Based on Clustering Evolving Model for Detecting Intrusion Attacks of Unknown Type

Author

Xiong, Gang ; Zhang, Minxia

Author_Institution

Dept. of Comput. Sci., Zhejiang Univ. of Technol., Hangzhou, China

fYear

2010

Firstpage

579

Lastpage

583

Abstract

It is an important issue to detect the intrusion attacks for the security of network communication. The clustering-based methods usually are proposed to cope with the problem of intrusion detections. However, how to detect the unknown intrusion attacks within stream data has come to be a challenge. In this paper, we consider the intrusion attacks as outliers and propose a novel approach (called DOExMiCluster) based on clustering data stream to detect the outliers of unknown type. The new micro-cluster concept, normalization data technology and k-mean measure are only used to learn the normal sub micro-clusters online till the event that two special micro-clusters are merged and a new micro-cluster is created doesn´t appear, and then system recognizes the instances which cannot fall into any micro-clusters as outliers.

Keywords

computer network security; workstation clusters; DOExMiCluster; clustering evolving model; clustering-based methods; data stream clustering; data streams; intrusion attacks detection; intrusion detections; k-mean measure; microcluster concept; network communication security; normalization data technology; outliers detection; unknown intrusion attacks; Clustering algorithms; Data mining; Euclidean distance; Intrusion detection; Time measurement; data streams; detecting outliers; intrusion attacks; micro-cluster; unknown type;

fLanguage

English

Publisher

ieee

Conference_Titel

Multimedia Information Networking and Security (MINES), 2010 International Conference on

Conference_Location

Nanjing, Jiangsu

Print_ISBN

978-1-4244-8626-7

Electronic_ISBN

978-0-7695-4258-4

Type

conf

DOI

10.1109/MINES.2010.127

Filename

5670895