Intrusion detection based on supervised S-kv-Isomap algorithm

doi:10.3778/j.issn.1002-8331.2010.03.006

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (3): 20-22.DOI: 10.3778/j.issn.1002-8331.2010.03.006

• 博士论坛 • Previous Articles Next Articles

Intrusion detection based on supervised S-kv-Isomap algorithm

ZHENG Kai-mei^1，2，QIAN Xu¹

1.School of Mechanical Electronic & Information Engineering，China University of Mining & Technology Beijing，Beijing 100083，China
2.Information Engineering Department，China Institute of Defense Science and Technology，Beijing 101601，China

Received:2009-10-14 Revised:2009-12-13 Online:2010-01-21 Published:2010-01-21
Contact: ZHENG Kai-mei

有监督S-kv-Isomap在入侵检测中的应用

郑凯梅^1，2，钱旭¹

1.中国矿业大学机电与信息工程学院，北京 100083
2.中国防卫科技学院信息工程系，北京 101601

通讯作者: 郑凯梅

Abstract

Abstract: Intrusion detection is still a hot area in computer security.When performing visualization and classification，the problem should be confronted is the high dimensionality.As one of the manifold learning algorithms Isomap is an effective nonlinear dimension reduction tool.However，when Isomap is applied to the real-world data，it shows some limitations，such as failing to guarantee connectedness of the constructed neighborhood graphs and not using the class labels of the data.An improved version of Isomap，namely S-kv-Isomap，is proposed.S-kv-Isomap utilizes class information to guide the dimension reduction procedure and k-variable method to build connected neighborhood graphs so as to enhance the robustness.The new scheme is evaluated with KDD CUP 1999 datasets in visualization and classification on four kinds of intrusion types： Dos，R2L，Probe，and U2R.Experiment results show that S-kv-Isomap performs best compared with kv-Isomap in visualization.In the classification test，S-kv-Isomap is compared with kv-Isomap，SVM，and k-NN.The results show that S-kv-Isomap performs higher detection rate and very low false positive rate.

Key words: supervised learning, dimension reduction, manifold learning, Isomap, visualization, classification, intrusion detection

摘要： 入侵检测是计算机安全研究方面的热点领域，在入侵检测数据可视化和分类方面面临的问题是其高维特性。流形学习算法Isomap是有效的非线性降维工具。但是Isomap算法在实际应用中存在不能保证构造连通的邻接图和没有利用样本已知类别标记的缺点，针对上述缺陷提出了健壮的有监督S-kv-Isomap算法。该算法利用类别标记来指导降维，并且利用k-variable算法构造联通的邻接图。实验选用KDDCUP1999数据集，对四类入侵数据即Dos、R2L、Probe、U2R进行了可视化和分类研究。可视化中比较了S-kv-Isomap算法与kv-Isomap算法，前者具有更好的可视化效果。在分类研究中比较了S-kv-Isomap、kv-Isomap、SVM和k-NN算法，实验结果表明，S-kv-Isomap方法在入侵检测中不仅保持较高的入侵检测率，而且误警率很低。

关键词: 有监督学习, 维数约简, 流形学习, Isomap, 可视化, 分类, 入侵检测, ,

CLC Number:

TP393

ZHENG Kai-mei^1，2，QIAN Xu¹. Intrusion detection based on supervised S-kv-Isomap algorithm[J]. Computer Engineering and Applications, 2010, 46(3): 20-22.

郑凯梅^1，2，钱旭¹. 有监督S-kv-Isomap在入侵检测中的应用[J]. 计算机工程与应用, 2010, 46(3): 20-22.

[1]	YANG Chunxia, LI Xinxu, WU Jiajun, LIU Tianyu. Hierarchical Network Sentiment Classification Based on Attention Interaction Mechanism [J]. Computer Engineering and Applications, 2021, 57(9): 134-139.
[2]	XU Chengzhi, WAN Fang. Application of Siamese Network with Two-Level Neighborhood Sampling in Manifold Learning [J]. Computer Engineering and Applications, 2021, 57(9): 233-239.
[3]	YU Lei, XU Guangluan, WANG Yang, LIN Daoyu, LI Feng. Research on Multidimensional Visualization of Heterogeneous Network Based on Dynamic Projection Embedding [J]. Computer Engineering and Applications, 2021, 57(8): 145-152.
[4]	ZHANG Hanyu, WU Zhihao, XU Yong, CHEN Bin. Face Forensics Detection Method Based on Enhanced Convolutional Neural Networks [J]. Computer Engineering and Applications, 2021, 57(8): 220-224.
[5]	HAN Dongfang, Turdy Toheti, Askar Hamdulla. Survey on Question Classification Method in Question Answering System [J]. Computer Engineering and Applications, 2021, 57(6): 10-21.
[6]	WANG Youfa, ZHOU Yuanyuan, LUO Jianqiang. Analysis of Hotspots and Progress in Intelligent Manufacturing in Recent 20 Years [J]. Computer Engineering and Applications, 2021, 57(6): 49-57.
[7]	HUANG Jinjie, LIN Jiangquan, HE Yongjun, HE Jinjie, WANG Yajun. Chinese Short Text Classification Algorithm Based on Local Semantics and Context [J]. Computer Engineering and Applications, 2021, 57(6): 94-100.
[8]	ZOU Chengming, HU Youpu. Monocular Depth Estimation in Outdoor Scene with Generative Adversarial Network [J]. Computer Engineering and Applications, 2021, 57(6): 176-183.
[9]	HAN Weiyu, CHENG Longsheng. Research on Roling Bearing Failure Mode Classification Based on MTS and SVM [J]. Computer Engineering and Applications, 2021, 57(6): 239-246.
[10]	HUO Guangyu, ZHANG Yong, SUN Yanfeng, YIN Baocai. Research on Archive Data Intelligent Classification Based on Semantic [J]. Computer Engineering and Applications, 2021, 57(6): 247-253.
[11]	LI Shuo, LIANG Yi. Prediction Model of Execution Time for Batch Application in Spark [J]. Computer Engineering and Applications, 2021, 57(5): 79-87.
[12]	WANG Fengqin, KE Hengjin. Application of CNN and Its Analysis in Depression Identification [J]. Computer Engineering and Applications, 2021, 57(5): 245-250.
[13]	YUAN Mingyang, HUANG Hongbo, ZHOU Changsheng. Research Progress of Image Semantic Segmentation Based on Fully Supervised Learning [J]. Computer Engineering and Applications, 2021, 57(4): 43-54.
[14]	TAO Tiwei, LIU Mingxia, WANG Mingliang, WANG Linlin, YANG Deyun, ZHANG Qiang. Effective Distance Based Low-Rank Representation [J]. Computer Engineering and Applications, 2021, 57(4): 141-147.
[15]	ZHENG Cheng, DONG Chunyang, HUANG Xiayan. Short Text Classification Method Based on BTM Graph Convolutional Network [J]. Computer Engineering and Applications, 2021, 57(4): 155-160.

Intrusion detection based on supervised S-kv-Isomap algorithm

有监督S-kv-Isomap在入侵检测中的应用

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics