Network Intrusion Detection by Variational Component-Based Feature Saliency Gaussian Mixture Clustering

被引:0
|
作者
Hong, Xin [1 ]
Papazachos, Zafeirios [1 ]
del Rincon, Jesus Martinez [1 ]
Miller, Paul [1 ]
机构
[1] Queens Univ Belfast, Sch Elect Elect Engn & Comp Sci, Ctr Secure Informat Technol, Belfast, Antrim, North Ireland
来源
COMPUTER SECURITY. ESORICS 2023 INTERNATIONAL WORKSHOPS, CPS4CIP, PT II | 2024年 / 14399卷
关键词
Component-based Feature Saliency; Clustering; Anomaly Detection; Network Intrusion Detection; SELECTION;
D O I
10.1007/978-3-031-54129-2_45
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Anomaly detection is a core function of the network intrusion detection system, and due to the high volume and dimensionality of network data, clustering is an important technique for anomaly detection in unsupervised machine learning. In this paper, we propose a clustering approach for anomaly detection on network traffic flow data. For profiling normal traffic, we apply the component-based feature saliency Gaussian mixture model. We then present a variational learning algorithm which can simultaneously optimize over the number of components, the saliencies of the features for each component, and the parameters of the mixture model. The preliminary experiments on a network intrusion dataset demonstrate the satisfying performance achieved by both our method on its own and with a data preprocessing using the auto-encoder.
引用
收藏
页码:761 / 772
页数:12
相关论文
共 50 条
  • [1] Component-Based Feature Saliency for Clustering
    Hong, Xin
    Li, Hailin
    Miller, Paul
    Zhou, Jianjiang
    Li, Ling
    Crookes, Danny
    Lu, Yonggang
    Li, Xuelong
    Zhou, Huiyu
    IEEE TRANSACTIONS ON KNOWLEDGE AND DATA ENGINEERING, 2021, 33 (03) : 882 - 896
  • [2] A New Approach to Network Intrusion Detection Based on Gaussian Mixture Model
    He, Qian
    Zhang, Qian
    Wang, Lin
    Liang, Yi
    INTERNATIONAL CONFERENCE ON COMPUTATIONAL AND INFORMATION SCIENCES (ICCIS 2014), 2014, : 535 - 540
  • [3] Component-based Software Architecture Design for Network Intrusion Detection and Prevention System
    Han, Jianchao
    Beheshti, Mohsen
    Kowalski, Kazimierz
    Ortiz, Joel
    Tomelden, Johnly
    PROCEEDINGS OF THE 2009 SIXTH INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY: NEW GENERATIONS, VOLS 1-3, 2009, : 248 - 253
  • [4] Good feature for framing: Saliency-based Gaussian mixture
    Habibi, Zaynab
    Mouaddib, El Mustapha
    Caron, Guillaume
    2015 IEEE/RSJ INTERNATIONAL CONFERENCE ON INTELLIGENT ROBOTS AND SYSTEMS (IROS), 2015, : 3682 - 3687
  • [5] A Membership Function for Feature Clustering Based Network Intrusion and Anomaly Detection
    Nagaraja, Arun
    Kumar, T. Satish
    ICEMIS'18: PROCEEDINGS OF THE FOURTH INTERNATIONAL CONFERENCE ON ENGINEERING AND MIS, 2018,
  • [6] A Component-Based Framework for Visualization of Intrusion Detection Events
    Luse, Andy
    Scheibe, Kevin P.
    Townsend, Anthony M.
    INFORMATION SECURITY JOURNAL, 2008, 17 (02): : 95 - 107
  • [7] An Intrusion Detection mechanism based on feature based data clustering
    Das, Debasish
    Sharma, Utpal
    Bhattacharyya, D. K.
    2008 INTERNATIONAL CONFERENCE ON EMERGING TECHNOLOGIES, PROCEEDINGS, 2008, : 172 - 175
  • [8] CLUSTERING-BASED NETWORK INTRUSION DETECTION
    Zhong, Shi
    Khoshgoftaar, Taghi M.
    Seliya, Naeem
    INTERNATIONAL JOURNAL OF RELIABILITY QUALITY AND SAFETY ENGINEERING, 2007, 14 (02) : 169 - 187
  • [9] UTTAMA: An Intrusion Detection System Based on Feature Clustering and Feature Transformation
    Nagaraja, Arun
    Uma, B.
    Gunupudi, Rajesh kumar
    FOUNDATIONS OF SCIENCE, 2020, 25 (04) : 1049 - 1075
  • [10] A Clustering based Algorithm for Network Intrusion Detection
    Arya, K. V.
    Kumar, Hemant
    PROCEEDINGS OF THE FIFTH INTERNATIONAL CONFERENCE ON SECURITY OF INFORMATION AND NETWORKS, 2012, : 193 - 196
12345