Unsupervised Anomaly Detection with Unlabeled Data Using Clustering

Unsupervised Anomaly Detection with Unlabeled Data Using Clustering

Intrusions pose a serious security risk in a network environment. New intrusion types, of which detection systems are unaware, are the most difficult to detect. The amount of available network audit data instances is usually large; human labeling is tedious, time-consuming, and expensive. Traditiona...

Full description

Saved in:
Bibliographic Details
Main Authors: Chimphlee, Witcha, Abdullah, Abdul Hanan, Md. Sap, Mohd. Noor
Format: Conference or Workshop Item
Language:English
Published: 2005
Subjects:
QA75 Electronic computers. Computer science
Online Access:http://eprints.utm.my/id/eprint/3356/1/Mohd_Noor_-_Unsupervised_Anomaly_Detection_with_Unlabeled_Data.pdf
http://eprints.utm.my/id/eprint/3356/
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Universiti Teknologi Malaysia
Language: English
id my.utm.3356
record_format eprints
spelling my.utm.33562017-08-30T07:28:39Z http://eprints.utm.my/id/eprint/3356/ Unsupervised Anomaly Detection with Unlabeled Data Using Clustering Chimphlee, Witcha Abdullah, Abdul Hanan Md. Sap, Mohd. Noor QA75 Electronic computers. Computer science Intrusions pose a serious security risk in a network environment. New intrusion types, of which detection systems are unaware, are the most difficult to detect. The amount of available network audit data instances is usually large; human labeling is tedious, time-consuming, and expensive. Traditional anomaly detection algorithms require a set of purely normal data from which they train their model. We present a clustering-based intrusion detection algorithm, unsupervised anomaly detection, which trains on unlabeled data in order to detect new intrusions. Our method is able to detect many different types of intrusions, while maintaining a low false positive rate as verified over the Knowledge Discovery and Data Mining - KDD CUP 1999 dataset. 2005-05-17 Conference or Workshop Item PeerReviewed application/pdf en http://eprints.utm.my/id/eprint/3356/1/Mohd_Noor_-_Unsupervised_Anomaly_Detection_with_Unlabeled_Data.pdf Chimphlee, Witcha and Abdullah, Abdul Hanan and Md. Sap, Mohd. Noor (2005) Unsupervised Anomaly Detection with Unlabeled Data Using Clustering. In: Postgraduate Annual Research Seminar 2005, May 2005.
institution Universiti Teknologi Malaysia
building UTM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Teknologi Malaysia
content_source UTM Institutional Repository
url_provider http://eprints.utm.my/
language English
topic QA75 Electronic computers. Computer science
spellingShingle QA75 Electronic computers. Computer science
Chimphlee, Witcha
Abdullah, Abdul Hanan
Md. Sap, Mohd. Noor
Unsupervised Anomaly Detection with Unlabeled Data Using Clustering
description Intrusions pose a serious security risk in a network environment. New intrusion types, of which detection systems are unaware, are the most difficult to detect. The amount of available network audit data instances is usually large; human labeling is tedious, time-consuming, and expensive. Traditional anomaly detection algorithms require a set of purely normal data from which they train their model. We present a clustering-based intrusion detection algorithm, unsupervised anomaly detection, which trains on unlabeled data in order to detect new intrusions. Our method is able to detect many different types of intrusions, while maintaining a low false positive rate as verified over the Knowledge Discovery and Data Mining - KDD CUP 1999 dataset.
format Conference or Workshop Item
author Chimphlee, Witcha
Abdullah, Abdul Hanan
Md. Sap, Mohd. Noor
author_facet Chimphlee, Witcha
Abdullah, Abdul Hanan
Md. Sap, Mohd. Noor
author_sort Chimphlee, Witcha
title Unsupervised Anomaly Detection with Unlabeled Data Using Clustering
title_short Unsupervised Anomaly Detection with Unlabeled Data Using Clustering
title_full Unsupervised Anomaly Detection with Unlabeled Data Using Clustering
title_fullStr Unsupervised Anomaly Detection with Unlabeled Data Using Clustering
title_full_unstemmed Unsupervised Anomaly Detection with Unlabeled Data Using Clustering
title_sort unsupervised anomaly detection with unlabeled data using clustering
publishDate 2005
url http://eprints.utm.my/id/eprint/3356/1/Mohd_Noor_-_Unsupervised_Anomaly_Detection_with_Unlabeled_Data.pdf
http://eprints.utm.my/id/eprint/3356/
_version_ 1643643788534480896

Similar Items