Anomaly-based intrusion detection using fuzzy rough clustering
It is an important issue for the security of network to detect new intrusion attack and also to increase the detection rates and reduce false positive rates in Intrusion Detection System (IDS). Anomaly intrusion detection focuses on modeling normal behaviors and identifying significant deviations, w...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | en |
| Published: |
2006
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/7458/1/Abdullah_Abd_Hanan_2006_Anomaly_BAsed_Intrusion_Detection_Fuzzy.pdf http://eprints.utm.my/7458/ http://dx.doi.org/10.1109/ICHIT.2006.253508 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | It is an important issue for the security of network to detect new intrusion attack and also to increase the detection rates and reduce false positive rates in Intrusion Detection System (IDS). Anomaly intrusion detection focuses on modeling normal behaviors and identifying significant deviations, which could be novel attacks. The normal and the suspicious behavior in computer networks are hard to predict as the boundaries between them cannot be well defined. We apply the idea of the Fuzzy Rough C-means (FRCM) to clustering analysis. FRCM integrates the advantage of fuzzy set theory and rough set theory that the improved algorithm to network intrusion detection. The experimental results on dataset KDDCup99 show that our method outperforms the existing unsupervised intrusion detection methods |
|---|