Mining Common Outliers for Intrusion Detection

机译：挖掘常见异常值进行入侵检测

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Data mining for intrusion detection can be divided into several sub-topics, among which unsupervised clustering (which has controversial properties). Unsu-pervised clustering for intrusion detection aims to i) group behaviours together depending on their similarity and ii) detect groups containing only one (or very few) behaviour(s). Such isolated behaviours seem to deviate from the model of normality; therefore, they are considered as malicious. Obviously, not all atypical behaviours are attacks or intrusion attempts. This represents one drawback of intrusion detection methods based on clustering. We take into account the addition of a new feature to isolated behaviours before they are considered malicious. This feature is based on the possible repeated occurrences of the bahaviour on many information systems. Based on this feature, we propose a new outlier mining method which we validate through a set of experiments.

机译：用于入侵检测的数据挖掘可以分为几个子主题，其中包括无监督聚类（具有争议的属性）。未经监督的用于入侵检测的聚类旨在：i）根据行为的相似性将行为分组在一起； ii）检测仅包含一个（或很少）行为的组。这种孤立的行为似乎偏离了正常模型。因此，它们被认为是恶意的。显然，并非所有非典型行为都是攻击或入侵尝试。这代表了基于聚类的入侵检测方法的一个缺点。在考虑孤立行为之前，我们会考虑添加新功能。此功能基于许多信息系统上行为的可能重复出现。基于此功能，我们提出了一种新的离群挖掘方法，我们通过一组实验对其进行了验证。

著录项

来源
《Advances in knowledge discovery and management》|2009年|P.217-234|共18页
会议地点 Strasbourg(FR)
作者
Goverdhan Singh; rnFlorent Masseglia; rnCeline Fiot; rnAlice Marascu; rnPascal Poncelet;
展开▼
作者单位

INRIA, 2004 route des lucioles - BP 93, FR-06902 Sophia Antipolis;

rnINRIA, 2004 route des lucioles - BP 93, FR-06902 Sophia Antipolis;

rnINRIA, 2004 route des lucioles - BP 93, FR-06902 Sophia Antipolis;

rnINRIA, 2004 route des lucioles - BP 93, FR-06902 Sophia Antipolis;

rnLIRMM UMR CNRS 5506, 161 Rue Ada, 34392 Montpellier Cedex 5, France;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类数据处理、数据处理系统;
关键词
intrusion detection; anomalies; outliers; data streams;

机译：入侵检测;异常离群值数据流;

相似文献

外文文献
中文文献
专利

1. Statistical outlier detection-based data mining and its applications to network intrusion detection [J] . KenjiYamanishi, Jun-ichi Takeuchi 電子情報通信学会技術研究報告. 情報ネットワ-ク. Information Networks . 2002,第132期

机译：基于统计离群值检测的数据挖掘及其在网络入侵检测中的应用
2. Statistical outlier detection-based data mining and its applications to network intrusion detection [J] . KenjiYamanishi, Jun-ichi Takeuchi 電子情報通信学会技術研究報告. 情報ネットワ-ク. Information Networks . 2002,第132期

机译：基于统计异常检测的数据挖掘及其在网络入侵检测中的应用
3. Application of High-Dimensional Outlier Mining Based on the Maximum Frequent Pattern Factor in Intrusion Detection [J] . Limin Shen, Zhongkui Sun, Lei Chen, Mathematical Problems in Engineering: Theory, Methods and Applications . 2021,第a期

机译：高维异常挖掘在入侵检测中的最大频繁图案因子中的应用
4. Mining Common Outliers for Intrusion Detection [C] . Goverdhan Singh, Florent Masseglia, Celine Fiot, Conference on advances in knowledge discovery and management . 2010

机译：用于入侵检测的普通异常值
5. Anomaly-based network intrusion detection using outlier subspace analysis approach. [D] . Kershaw, David. 2010

机译：使用异常子空间分析方法的基于异常的网络入侵检测。
6. Data mining application to healthcare fraud detection: a two-step unsupervised clustering method for outlier detection with administrative databases [O] . Michela Carlotta Massi, Francesca Ieva, Emanuele Lettieri 2020

机译：数据挖掘应用于医疗保健欺诈检测：使用管理数据库的异常值检测的两步无监督群集方法
7. Mining Common Outliers for Intrusion Detection [O] . Singh, Goverdhan, Masseglia, Florent, Fiot, Céline, 2010

机译：挖掘常见异常值进行入侵检测

Mining Common Outliers for Intrusion Detection

摘要

著录项

相似文献

相关主题

期刊订阅