Title :
Intrusion Detection Based on Adaptive Polyclonal Clustering
Author :
Li, Ma ; Lin, Bai ; Li-cheng, Jiao ; Chang-guo, Chen
Author_Institution :
Key Lab. for Radar Signal Process., Xidian Univ., Xi´´an
Abstract :
Adaptive polyclonal algorithm is the improved one of clonal selection algorithm, and its convergence speed is much faster. This paper intends to direct a novel clustering analysis by means of the affinity function that the adaptive polyclonal clustering strategy affects. The clustering algorithm has the advantage that it does not depend on priori knowledge and has nothing to do data distribution, effectively overcoming the disadvantage that some existing algorithms are sensitive to initialization and easy to be trapped into the local optima. This algorithm clusters large data sets with mixed numeric and categorical values effectively. The intrusion detection system based on this algorithm can deal with massive unlabeled data to distinguish between normal and anomaly and even can detect unknown attacks. The computer comparison-contrast simulations through the KDD CUP 99 datasets show that the algorithm discussed in this paper has much superior detection rate and less false positive rate when compared with AiNet algorithm, the algorithm of L. Portnoy (2000) and the algorithm of L. Jing and L. Fang (2004)
Keywords :
pattern clustering; security of data; adaptive polyclonal clustering; affinity function; clonal selection algorithm; clustering analysis; computer comparison-contrast simulations; intrusion detection; large data set clustering; Application software; Clustering algorithms; Computational modeling; Computer simulation; Convergence; Data security; Detection algorithms; Intrusion detection; Radar signal processing; Signal processing algorithms;
Conference_Titel :
Computational Intelligence and Security, 2006 International Conference on
Conference_Location :
Guangzhou
Print_ISBN :
1-4244-0605-6
Electronic_ISBN :
1-4244-0605-6
DOI :
10.1109/ICCIAS.2006.294205
