Online Anomaly Detection by Using N-gram Model and Growing Hierarchical Self-Organizing Maps

被引:0
|
作者
Zolotukhin, Mikhail [1 ]
Hamalainen, Timo [1 ]
Juvonen, Antti [1 ]
机构
[1] Univ Jyvaskyla, Dept Math Informat Technol, FI-40014 Jyvvaskyla, Finland
来源
2012 8TH INTERNATIONAL WIRELESS COMMUNICATIONS AND MOBILE COMPUTING CONFERENCE (IWCMC) | 2012年
关键词
Data mining; intrusion detection; anomaly detection; n-gram; growing hierarchical self-organizing map;
D O I
暂无
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
In this research, online detection of anomalous HTTP requests is carried out with Growing Hierarchical Self-Organizing Maps (GHSOMs). By applying an n-gram model to HTTP requests from network logs, feature matrices are formed. GHSOMs are then used to analyze these matrices and detect anomalous requests among new requests received by the web-server. The system proposed is self-adaptive and allows detection of online malicious attacks in the case of continuously updated web-applications. The method is tested with network logs, which include normal and intrusive requests. Almost all anomalous requests from these logs are detected while keeping the false positive rate at a very low level.
引用
收藏
页码:47 / 52
页数:6
相关论文
共 50 条
  • [41] Self-organizing maps for outlier detection
    Munoz, A
    Muruzabal, J
    NEUROCOMPUTING, 1998, 18 (1-3) : 33 - 60
  • [42] Mapping model behaviour using Self-Organizing Maps
    Herbst, M.
    Gupta, H. V.
    Casper, M. C.
    HYDROLOGY AND EARTH SYSTEM SCIENCES, 2009, 13 (03) : 395 - 409
  • [43] Growing Hierarchical Self-Organizing Map for Images Hierarchical Clustering
    Buczek, Bartlomiej M.
    Myszkowski, Pawel B.
    COMPUTATIONAL COLLECTIVE INTELLIGENCE: TECHNOLOGIES AND APPLICATIONS, PT I, 2011, 6922 : 52 - 61
  • [44] Visualizing changes in data collections using growing self-organizing maps
    Nürnberger, A
    Detyniecki, M
    PROCEEDING OF THE 2002 INTERNATIONAL JOINT CONFERENCE ON NEURAL NETWORKS, VOLS 1-3, 2002, : 1912 - 1917
  • [45] Discovering Intraday Price Patterns by Using Hierarchical Self-Organizing Maps
    Tsao, Chueh-Yung
    Chou, Chih-Hao
    PROCEEDINGS OF THE 11TH JOINT CONFERENCE ON INFORMATION SCIENCES, 2008,
  • [46] Biomimetic sensory abstraction using hierarchical quilted self-organizing maps
    Miller, Jeffrey W.
    Lommel, Peter H.
    INTELLIGENT ROBOTS AND COMPUTER VISION XXIV: ALGORITHMS, TECHNIQUES, AND ACTIVE VISION, 2006, 6384
  • [47] Anomaly Detection in Self-Organizing Industrial Systems Using Pathlets
    Kiermeier, Marie
    Werner, Martin
    Linnhoff-Popien, Claudia
    Sauer, Horst
    Wieghardt, Jan
    2017 IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL TECHNOLOGY (ICIT), 2017, : 1226 - 1231
  • [48] A parameter based growing ensemble of self-organizing maps for outlier detection in healthcare
    Elmougy, Samir
    Hossain, M. Shamim
    Tolba, Ahmed S.
    Alhamid, Mohammed F.
    Muhammad, Ghulam
    CLUSTER COMPUTING-THE JOURNAL OF NETWORKS SOFTWARE TOOLS AND APPLICATIONS, 2019, 22 (Suppl 1): : 2437 - 2460
  • [49] A parameter based growing ensemble of self-organizing maps for outlier detection in healthcare
    Samir Elmougy
    M. Shamim Hossain
    Ahmed S. Tolba
    Mohammed F. Alhamid
    Ghulam Muhammad
    Cluster Computing, 2019, 22 : 2437 - 2460
  • [50] Urban traffic modeling and pattern detection using online map vendors and self-organizing maps
    Guo, Zifeng
    Li, Biao
    Hovestadt, Ludger
    FRONTIERS OF ARCHITECTURAL RESEARCH, 2021, 10 (04) : 715 - 728
12345