Title :
Research and Implementation of an Anomaly Detection Model Based on Clustering Analysis
Author_Institution :
Sch. of Sci., Beijing Inf. Sci. & Technol. Univ., Beijing, China
Abstract :
IDS (Intrusion Detection system) is an active and driving defense technology. This paper mainly focuses on intrusion detection based on data mining. The aim is to improve the detection rate and decrease the false alarm rate, and the main research method is clustering analysis. The algorithm and model of ID are proposed and corresponding simulation experiments are presented. Firstly, a method to reduce the noise and isolated points on the data set was advanced. By dividing and merging clusters and using the density radius of super sphere, an algorithm to calculate the number of the Cluster Centroid was given. By the more accurate method of finding k clustering center, an anomaly detection model was presented to get better detection effect. This paper used KDD CUP 1999 data set to test the performance of the model. The results show the system has a higher detection rate and a lower false alarm rate, it achieves expectant aim.
Keywords :
data mining; merging; pattern clustering; security of data; IDS; anomaly detection model; cluster analysis; clusters dividing; clusters merging; data mining; driving defense technology; intrusion detection system; Algorithm design and analysis; Classification algorithms; Clustering algorithms; Data mining; Data models; Intrusion detection; Noise; Anomaly Detection; Clustering analysis; Intrusion Detection; K-means;
Conference_Titel :
Intelligence Information Processing and Trusted Computing (IPTC), 2010 International Symposium on
Conference_Location :
Huanggang
Print_ISBN :
978-1-4244-8148-4
Electronic_ISBN :
978-0-7695-4196-9
DOI :
10.1109/IPTC.2010.94
