Abstract
It is an important issue for the security of network to detect new intrusions attack. We introduce the idea of the law of gravity to clustering analysis, and present a gravity-based clustering algorithm. At the same time, we present a simple method calculating cluster threshold. Based on these, a new intrusion detection method is introduced in this paper. The detection method has the nearly linear time complexity with the size of dataset and the number of attributes, which results in good scalability. The experimental results on dataset KDDCUP99 show that our method outperforms the existing unsupervised intrusion detection methods on accuracy and can detect new intrusions.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Elkan, C.: Results of the KDD 1999 Classifier Learning Contest (1999), http://www.cs.ucsd.edu/users/elkan/clresults.html
Eskin, E.: Anomaly detection over noisy data using learned probability distributions. In: Proceedings of the Seventeenth International Conference on Machine Learning (ICML 2000), pp. 255–262 (2000)
Eskin, E., Arnold, A., Prerau, M., Portnoy, L., Stolfo, S.: A geometric framework for unsupervised anomaly detection: Detecting intrusions in unlabeled data. In: Data Mining for Security Applications, Kluwer, Dordrecht (2002)
Yamanishi, K., Takeuchi, J.-I., Williams, G., Milne, P.: On-line unsupervised outlier detection using finite mixtures with discounting learning algorithms. In: Proceedings of the Sixth ACM SIGKDD 2000, Boston, MA, USA, pp. 320–324 (2000)
Yamanishi, K., Takeuchi, J.-i.: Discovering outlier filtering rules from unlabeled data: combining a supervised learner with an unsupervised learner. In: Proceedings of the seventh ACM SIGKDD 2001, San Francisco, California, pp. 389–394 (2001)
Merz, C.J., Merphy, P.: UCI repository of machine learning databases, http://www.ics.uci.edu/mlearn/MLRRepository.html
Portnoy, L., Eskin, L., Stolfo, S.J.: Intrusion Detection with Unlabeled Data using Clustering. In: Proceedings of ACM CSS Workshop on Data Mining Applied to Security (DMSA 2001), Philadelphia, PA, November 5-8 (2001)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Jiang, SY., Li, QH., Wang, H. (2004). A Gravity-Based Intrusion Detection Method. In: Jin, H., Pan, Y., Xiao, N., Sun, J. (eds) Grid and Cooperative Computing - GCC 2004 Workshops. GCC 2004. Lecture Notes in Computer Science, vol 3252. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30207-0_65
Download citation
DOI: https://doi.org/10.1007/978-3-540-30207-0_65
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-23578-1
Online ISBN: 978-3-540-30207-0
eBook Packages: Springer Book Archive