Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier

Jun Ma; Guanzhong Dai; Zhong Xu

doi:10.1109/ICPPW.2009.6

I
ICPPW
2009
2009 International Conference on Parallel Processing Workshops
Abstract - Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jun Ma Articles by Guanzhong Dai Articles by Zhong Xu

2009 International Conference on Parallel Processing Workshops

Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier

Vienna, Austria

September 22-September 25

ISBN: 978-0-7695-3803-7

	ASCII Text	x
	Jun Ma, Guanzhong Dai, Zhong Xu, "Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier," 2012 41st International Conference on Parallel Processing Workshops, pp. 409-414, 2009 International Conference on Parallel Processing Workshops, 2009.

	BibTex	x
	@article{ 10.1109/ICPPW.2009.6, author = {Jun Ma and Guanzhong Dai and Zhong Xu}, title = {Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier}, journal ={2012 41st International Conference on Parallel Processing Workshops}, volume = {0}, year = {2009}, issn = {1530-2016}, pages = {409-414}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICPPW.2009.6}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - 2012 41st International Conference on Parallel Processing Workshops TI - Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier SN - 1530-2016 SP409 EP414 A1 - Jun Ma, A1 - Guanzhong Dai, A1 - Zhong Xu, PY - 2009 KW - Anomaly Detection KW - Dissimilarity Representation KW - SVM VL - 0 JA - 2012 41st International Conference on Parallel Processing Workshops ER -

Jun Ma

Guanzhong Dai

Zhong Xu

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICPPW.2009.6

We present a new network anomaly detection system using dissimilarity-based one-class support vector machine( DSVMC). we transform the raw data into a dissimilarity space using Dissimilarity Representations (DR). DR describe objects by their dissimilarities to a set of target class. DSVMC are constructed on these DR. We propose a framework of anomaly detection using DSVMC. A new strategy of prototype selection has been proposed to obtain better DR. We not only offer a better approach in strategy to describe to distribution of large training dataset but also reduce the computational cost of prototype selection largely. In order to deploy the ADS in real-time detection application, we use Kernel Primary Component Analysis (KPCA) to reduce the dimension of transformed data. Evaluation has been made among traditional one-class classifiers, the dissimilarity-based one class SVM classifier without optimization of DR (WSVMC) and our DSVMC on KDDCUP’ 99 dataset. The results show that DSVMC can achieve high detection rate than WSVMC and more robust performance than traditional one-class classifiers.

Index Terms:

Anomaly Detection, Dissimilarity Representation, SVM

Citation:

Jun Ma, Guanzhong Dai, Zhong Xu, "Network Anomaly Detection Using Dissimilarity-Based One-Class SVM Classifier," icppw, pp.409-414, 2009 International Conference on Parallel Processing Workshops, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.