• DocumentCode
    3372273
  • Title

    A Novel Outlier Detection Scheme for Network Intrusion Detection Systems

  • Author

    Prakobphol, Komsit ; Zhan, Justin

  • Author_Institution
    Carnegie Mellon CyLab, Kobe
  • fYear
    2008
  • fDate
    24-26 April 2008
  • Firstpage
    555
  • Lastpage
    560
  • Abstract
    Network intrusion detection system serves as a second line of defense to intrusion prevention. Anomaly detection approach is important in order to detect new attacks. Outlier detection scheme is one of the most successful anomaly detection approaches. In this paper, we propose a novel outlier detection scheme based on cost-distribution to detect anomaly behavior in network intrusion detection. We evaluate the capability of this new approach with the data set from KDD Cup 1999 data mining competition. The results indicate that the cost-distribution based scheme outperforms current outlier anomaly detection approaches in the capability to detect attacks and low false alarm rate.
  • Keywords
    computer network management; security of data; anomaly detection; intrusion prevention; network intrusion detection systems; outlier detection scheme; Data mining; Decision trees; Information security; Intrusion detection; Pattern analysis; Pattern recognition; Predictive models; Probability; Telecommunication traffic; Traffic control; anomaly detection; data mining; intrusion detection; outlier detection;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Information Security and Assurance, 2008. ISA 2008. International Conference on
  • Conference_Location
    Busan
  • Print_ISBN
    978-0-7695-3126-7
  • Type

    conf

  • DOI
    10.1109/ISA.2008.26
  • Filename
    4511627
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3372273