Title :
Two Level Anomaly Detection Classifier
Author :
Khan, Azeem ; Khan, Shehroz
Author_Institution :
Sch. of Comput., Dublin City Univ., Dublin
Abstract :
This paper proposes two-level strategy for building the anomaly detection classifier, namely, macro level and micro level classification. The former intend to classify network data on a broader perspective to predict whether it is normal or a potential attack. The later classifies individual anomalies within each category of known attacks. The paper also investigates various feature selection techniques for choosing relevant features and study its effect on the performance of the anomaly detection classifiers. Experiments suggest that employing feature selection along with the proposed approach give anomaly detection rate of up to 99%.
Keywords :
learning (artificial intelligence); pattern classification; security of data; anomaly detection classifier; feature selection techniques; machine learning; macrolevel classification; microlevel classification; two-level strategy; Computer networks; Computer vision; Information security; Information technology; Intrusion detection; Machine learning; Machine learning algorithms; Neural networks; Telecommunication traffic; Traffic control; Feature selection; Intrusion detection; Machine learning; Network anomaly detection;
Conference_Titel :
Computer and Electrical Engineering, 2008. ICCEE 2008. International Conference on
Conference_Location :
Phuket
Print_ISBN :
978-0-7695-3504-3
DOI :
10.1109/ICCEE.2008.138
