| 半监督聚类在入侵检测中的应用研究 |
| |
| 引用本文: | 周志平,庄金莲,陈佳丽. 半监督聚类在入侵检测中的应用研究[J]. 南平师专学报, 2013, 0(5): 56-60 |
| |
| 作者姓名: | 周志平 庄金莲 陈佳丽 |
| |
| 作者单位: | 龙岩学院数学与计算机科学学院,福建龙岩,364000 |
| |
| 摘 要: | 随着网络的快速发展,入侵检测系统生成的告警信息越来越多,聚类技术广泛的应用于处理告警信息.针对传统的K-Means算法易陷入局部最优,提出一种改进半监督聚类算法ISC.从数据集中抽取若干正常与异常样本分别采用层次聚类算法分别计算作为初始质心辅助K-Means算法进行聚类.实验结果表明,与现有相关算法相比,该算法具有更高的攻击检测率以及更低的误报率.
|
| 关 键 词: | 层次聚类 半监督聚类 入侵检测 告警融合 |
Application Research on Semi-Supervised Clustering in Intrusion Detection |
| |
| ZHOU Zhiping,ZHUANG Jinlian,CHEN Jiali. Application Research on Semi-Supervised Clustering in Intrusion Detection[J]. Journal of Nanping Teachers College, 2013, 0(5): 56-60 |
| |
| Authors: | ZHOU Zhiping ZHUANG Jinlian CHEN Jiali |
| |
| Affiliation: | (School of Mathematics and Computer Science, Longyan University, Longyan, Fujian 364000) |
| |
| Abstract: | With the rapid development of network, intrusion detection systems generate more and more alert information. Therefore, clustering technique is widely used in processing alerts. The traditional K-Means algorithm is easily trapped into local optimum, An im- proved semi-supervised clustering algorithm is proposed in this paper in order to overcome this problem. We collect samples which are labled normal and abnormal, then calculate them respectively with hierarchical clustering algorithm to support the initialization phase of K-Means clustering algorithm.Experimental results show that proposed clustering algorithm has a higher attack detection rate and lower false positive rate. |
| |
| Keywords: | hierarchical clustering semi-supervised clustering intrusion detection alert fusion |
| 本文献已被 维普 等数据库收录! |
|
