计算机工程与应用 ›› 2012, Vol. 48 ›› Issue (32): 65-68.

• 网络、通信、安全 • 上一篇    下一篇

新的模糊核聚类入侵检测方法

刘永芬1,陈志安2   

  1. 1.福建农林大学 金山学院 信息与机电工程系,福州 350001
    2.福建电信科学技术研究院,福州 350001
  • 出版日期:2012-11-11 发布日期:2012-11-20

New intrusion detection method based on fuzzy kernel clustering algorithm

LIU Yongfen1, CHEN Zhi’an2   

  1. 1.Department of Information and Mechatronics Engineering, Jinshan College, Fujian Agriculture and Forestry University, Fuzhou 350001, China
    2.Fujian Telecommunication Science Technology Institute, Fuzhou 350001, China
  • Online:2012-11-11 Published:2012-11-20

摘要: 针对人工标记数据类别代价太高以及传统聚类方法在处理高维数据时产生的维度效应,提出了一种针对无标签数据的新型模糊核聚类方法。通过将K-means与DBSCAN聚类算法相结合生成关联矩阵,设置约束条件的阈值得到初始聚类结果,并在模糊支持向量数据描述方法的基础上完成聚类过程。通过在网络连接数据的对比实验,验证了该方法的可行性与有效性。

关键词: 网络入侵检测, 模糊核聚类, 支持向量

Abstract: To solve the problem of high cost in labeling the data artificially and that of the dimension effect by traditional clustering method, this paper proposes a new fuzzy support vector clustering algorithm to cope with unlabeled data. Through combining K-means and DBSCAN algorithm to generate association matrix, setting the threshold value of constraint term to get the initial clustering, and using the fuzzy support vector domain description, the final result is achieved. The contrast experiment shows the feasibility and effectiveness of this method.

Key words: network intrusion detection, fuzzy kernel clustering, support vector