Abstract
This paper considers anomaly network traffic detection using different network feature subsets. Fuzzy c-means vector quantization is used to train network attack models and the minimum distortion rule is applied to detect network attacks. We also demonstrate the effectiveness and ineffectiveness in finding anomalies by looking at the network data alone. Experiments performed on the KDD CUP 1999 dataset show that time based traffic features in the last two second time window should be selected to obtain highest detection rates
Original language | English |
---|---|
Title of host publication | Proceedings: 2007 IEEE International Conference on Granular Computing (GrC 2007) |
Editors | T.Y Lin, X Hu |
Place of Publication | United States |
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Pages | 566-570 |
Number of pages | 5 |
ISBN (Print) | 9780769530321 |
DOIs | |
Publication status | Published - 2007 |
Event | IEEE International Conference on Granular Computing - San Jose, United States Duration: 2 Nov 2007 → 4 Nov 2007 |
Conference
Conference | IEEE International Conference on Granular Computing |
---|---|
Country/Territory | United States |
City | San Jose |
Period | 2/11/07 → 4/11/07 |