An unsupervised anomaly intrusion detection algorithm based on swarm intelligence

Author

Feng, Yong ; Wu, Zhong-Fu ; Wu, Kai-Gui ; Xiong, Zhong-Yang ; Zhou, Ying

Author_Institution

Coll. of Comput. Sci. & Technol., Chongqing Univ., China

Volume

7

fYear

2005

fDate

18-21 Aug. 2005

Firstpage

3965

Abstract

An approach to network intrusion detection is investigated, based on swarm intelligence. The basic idea of the method is to produce the cluster by swarm intelligence-based clustering. With the classified data instances, anomaly data clusters can be easily identified by normal cluster ratio. And then the identified cluster can be used in real data detection. In the traditional clustering-based intrusion detection algorithms, clustering using a simple distance-based metric and detection based on the centers of clusters, which generally degrade detection accuracy and efficiency. Our approach based on swarm intelligence can settle these problems effectively. The experiment result shows that our approach can detect unknown intrusions efficiently in the real network connections.

Keywords

computer networks; data mining; pattern classification; pattern clustering; security of data; anomaly data clusters; data instance classification; distance-based metric; network connection; network intrusion detection; pattern clustering; swarm intelligence; unsupervised anomaly intrusion detection; Ant colony optimization; Character generation; Clustering algorithms; Computer science; Degradation; Educational institutions; Electronic mail; Intrusion detection; Labeling; Particle swarm optimization; Anomaly intrusion detection; Clustering; Swarm Intelligence;

fLanguage

English

Publisher

ieee

Conference_Titel

Machine Learning and Cybernetics, 2005. Proceedings of 2005 International Conference on

Conference_Location

Guangzhou, China

Print_ISBN

0-7803-9091-1

Type

conf

DOI

10.1109/ICMLC.2005.1527630

Filename

1527630