A supervised clustering algorithm for computer intrusion detection

Xiangyang Li, Nong Ye

Research output: Contribution to journalArticle

10 Citations (Scopus)

Abstract

We previously developed a clustering and classification algorithm - supervised (CCAS) to learn patterns of normal and intrusive activities and to classify observed system activities. Here we further enhance the robustness of CCAS to the presentation order of training data and the noises in training data. This robust CCAS adds data redistribution, a supervised hierarchical grouping of clusters and removal of outliers as the postprocessing steps.

Original languageEnglish (US)
Pages (from-to)498-509
Number of pages12
JournalKnowledge and Information Systems
Volume8
Issue number4
DOIs
StatePublished - Nov 2005

Fingerprint

Intrusion detection
Clustering algorithms

Keywords

  • Classification
  • Clustering
  • Intrusion detection

ASJC Scopus subject areas

  • Information Systems

Cite this

A supervised clustering algorithm for computer intrusion detection. / Li, Xiangyang; Ye, Nong.

In: Knowledge and Information Systems, Vol. 8, No. 4, 11.2005, p. 498-509.

Research output: Contribution to journalArticle

@article{bcad39c0fd3944fa946f36fd133a7c59,
title = "A supervised clustering algorithm for computer intrusion detection",
abstract = "We previously developed a clustering and classification algorithm - supervised (CCAS) to learn patterns of normal and intrusive activities and to classify observed system activities. Here we further enhance the robustness of CCAS to the presentation order of training data and the noises in training data. This robust CCAS adds data redistribution, a supervised hierarchical grouping of clusters and removal of outliers as the postprocessing steps.",
keywords = "Classification, Clustering, Intrusion detection",
author = "Xiangyang Li and Nong Ye",
year = "2005",
month = "11",
doi = "10.1007/s10115-005-0195-8",
language = "English (US)",
volume = "8",
pages = "498--509",
journal = "Knowledge and Information Systems",
issn = "0219-1377",
publisher = "Springer London",
number = "4",

}

TY - JOUR

T1 - A supervised clustering algorithm for computer intrusion detection

AU - Li, Xiangyang

AU - Ye, Nong

PY - 2005/11

Y1 - 2005/11

N2 - We previously developed a clustering and classification algorithm - supervised (CCAS) to learn patterns of normal and intrusive activities and to classify observed system activities. Here we further enhance the robustness of CCAS to the presentation order of training data and the noises in training data. This robust CCAS adds data redistribution, a supervised hierarchical grouping of clusters and removal of outliers as the postprocessing steps.

AB - We previously developed a clustering and classification algorithm - supervised (CCAS) to learn patterns of normal and intrusive activities and to classify observed system activities. Here we further enhance the robustness of CCAS to the presentation order of training data and the noises in training data. This robust CCAS adds data redistribution, a supervised hierarchical grouping of clusters and removal of outliers as the postprocessing steps.

KW - Classification

KW - Clustering

KW - Intrusion detection

UR - http://www.scopus.com/inward/record.url?scp=28044469017&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=28044469017&partnerID=8YFLogxK

U2 - 10.1007/s10115-005-0195-8

DO - 10.1007/s10115-005-0195-8

M3 - Article

AN - SCOPUS:28044469017

VL - 8

SP - 498

EP - 509

JO - Knowledge and Information Systems

JF - Knowledge and Information Systems

SN - 0219-1377

IS - 4

ER -