Two-phase Intrusion Detection Algorithm in Mixed Attributes Data Stream

doi:10.3969/j.issn.1000-3428.2010.18.007

Computer Engineering ›› 2010, Vol. 36 ›› Issue (18): 19-20. doi: 10.3969/j.issn.1000-3428.2010.18.007

• Networks and Communications • Previous Articles Next Articles

Two-phase Intrusion Detection Algorithm in Mixed Attributes Data Stream

SU Xiao-ke1, LAN Yang2, QIN Yu-ming1, WAN Ren-xia1, CHENG Yao-dong3

(1. College of Information Science and Technology, Donghua University, Shanghai 201620, China; 2. School of Computer and Information Technology, Xinyang Normal University, Xinyang 464000, China;3. Computing Center, Institute of High Energy Physics, Chinese Academy of Sciences, Beijing 100049, China)

Online:2010-09-20 Published:2010-09-30

混合属性数据流的两阶段入侵检测算法

苏晓珂1，兰洋2，秦玉明1，万仁霞1，程耀东3

(1. 东华大学信息科学与技术学院，上海 201620；2. 信阳师范学院计算机与信息技术学院，河南信阳 464000；3. 中国科学院高能物理研究所计算中心，北京 100049)

作者简介:苏晓珂(1979－)，女，博士研究生，主研方向：模式识别，数据挖掘；兰洋，硕士；秦玉明，教授、博士生导师；万仁霞，博士研究生；程耀东，博士后
基金资助:
国家“863”计划基金资助项目(2006AA01A120)；河南省教育厅自然科学基础研究计划基金资助项目(2010A520033)

Abstract

Abstract:

This paper proposes a two-phase intrusion detection algorithm in mixed attributes data stream——KDDCUP99-10% network intrusion data set. The algorithm gains the statistical information in data stream by the incremental clustering. Weighted fuzzy clustering is done based on the statistical information according to proposed weighted fuzzy cluster feature. The number of clusters for fuzzy clustering can change dynamically. Theoretical analysis and experimental results show the algorithm can detect the intrusion behaviors effectively.

Key words: mixed attributes, fuzzy clustering, data stream, intrusion detection

摘要：

以KDDCUP99-10%网络入侵数据集作为数据流，提出一种混合属性数据流的两阶段入侵检测算法。通过增量聚类提取数据流的代表信息，根据提出的加权模糊簇特征对增量聚类结果做模糊聚类，簇数可动态改变。理论分析和实验结果表明，该算法可以有效检测数据流入侵。

关键词: 混合属性, 模糊聚类, 数据流, 入侵检测

CLC Number:

TP309.2

SU Xiao-Ke, LAN , XIANG , QIN Yu-Meng, MO Ren-Xia-1, CHENG Yao-Dong. Two-phase Intrusion Detection Algorithm in Mixed Attributes Data Stream[J]. Computer Engineering, 2010, 36(18): 19-20.

苏晓珂, 兰, 洋, 秦玉明, 万仁霞1, 程耀东. 混合属性数据流的两阶段入侵检测算法[J]. 计算机工程, 2010, 36(18): 19-20.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.3969/j.issn.1000-3428.2010.18.007

http://www.ecice06.com/EN/Y2010/V36/I18/19

[1]	CHEN Zhonglei, YI Peng, CHEN Xiang, HU Tao. Real-time Anomaly Detection Framework via System Calls Based on Integrated Learning [J]. Computer Engineering, 2023, 49(6): 162-169,179.
[2]	SHI Lei, ZHANG Jitao, GAO Yufei, WEI Lin, TAO Yongcai. Intrusion Detection of Network Traffic Based on Transformer and BiLSTM [J]. Computer Engineering, 2023, 49(3): 29-36,57.
[3]	LIU Qiang, ZHANG Ying, ZHOU Weixiang, JIANG Xiantao, ZHOU Weina, ZHOU Mouguo. Adaptive Class Incremental Learning-Based IoT Intrusion Detection System [J]. Computer Engineering, 2023, 49(2): 169-174.
[4]	SUN Yangwei, QI Yong. Intrusion Detection Method for In-Vehicle CAN Based on Cluster Mixed Sampling and PSO-Stacking [J]. Computer Engineering, 2023, 49(1): 138-145.
[5]	LIU Jinshuo, ZHAN Daiyi, DENG Juan, WANG Lina. Network Intrusion Detection Based on Deep Neural Network and Federated Learning [J]. Computer Engineering, 2023, 49(1): 15-21,30.
[6]	DONG Weiyu, LI Haitao, WANG Ruimin, REN Huajuan, SUN Xuekai. Network Traffic Anomaly Detection Model Based on Stacked Convolutional Attention [J]. Computer Engineering, 2022, 48(9): 12-19.
[7]	QIAO Caicai, WU Chengmao, LI Changxing, WANG Jiaye. Robust Fuzzy Clustering Algorithm Integrating Membership Degree and Pixel Alternating Guided Filtering [J]. Computer Engineering, 2022, 48(8): 224-233.
[8]	JIN Haibo, ZHAO Xinyue. High-Reliability Intrusion Detection Algorithm Under Conformal Prediction Framework [J]. Computer Engineering, 2022, 48(7): 130-140.
[9]	SHENG Long, YUAN Lina, WU Nannan, JI Shaopei. Network Anomaly Detection Model Based on GSA and DE Optimizing Hybrid Kernel ELM [J]. Computer Engineering, 2022, 48(6): 146-153.
[10]	LI Jinguo, JIAO Xubin. Research on Intrusion Detection Model in Fog Computing Environment [J]. Computer Engineering, 2022, 48(5): 43-52.
[11]	LIU Feifei, WU Zhongdong, DING Longbin, ZHANG Kai. Intrusion Detection Algorithm for AMI Based on Improved Online Sequential Extreme Learning Machine [J]. Computer Engineering, 2020, 46(9): 136-142,148.
[12]	LIU Yali, SHI Ruifeng, REN Xiaoliang. Intrusion Recognition for LTE Core Network Based on Low-Complexity Random Packet Detection [J]. Computer Engineering, 2020, 46(8): 139-145,152.
[13]	ZHANG Ling, ZHANG Jianwei, SANG Yongxuan, WANG Bo, HOU Zexiang. Intrusion Detection Algorithm Based on Random Forest and Artificial Immunity [J]. Computer Engineering, 2020, 46(8): 146-152.
[14]	ZHOU Sheng, LIU Sanmin. Research on Multi-Source Transfer Learning Data Streams Classification Based on Dynamic Strategy [J]. Computer Engineering, 2020, 46(5): 139-143,149.
[15]	FU Zixi, XU Yang, WU Zhaodi, XU Dandan, XIE Xiaoyao. SVM-KNN Network Intrusion Detection Method Based on Incremental Learning [J]. Computer Engineering, 2020, 46(4): 115-122.

Please choose a citation manager

Content to export

Two-phase Intrusion Detection Algorithm in Mixed Attributes Data Stream

混合属性数据流的两阶段入侵检测算法

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments

模态框（Modal）标题

Please choose a citation manager

Content to export

Two-phase Intrusion Detection Algorithm in Mixed Attributes Data Stream

混合属性数据流的两阶段入侵检测算法

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments