期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于单分类支持向量机和主动学习的网络异常检测研究 被引量:31

Research on network anomaly detection based on one-class SVM and active learning
下载PDF
导出
摘要 对基于支持向量机和主动学习的异常检测方法进行了研究,首先利用原始数据采用无监督方式建立单分类支持向量机模型,然后结合主动学习找出对提高异常检测性能最有价值的样本进行人工标记,利用标记数据和无标记数据以半监督方式对基于单分类支持向量机的异常检测模型进行扩展。实验结果表明,所提方法能够利用少量标记数据获取性能提升,并能够通过主动学习减小人工标记代价,更适用于实际网络环境。 A network anomaly detection method based on one-class SVM and active learning was presented. Firstly, the original instances were used to trained an one-class SVM model in unsupervised manner. Then the instances which can improve the performance mostly were found by active learning strategy. Finally, the classify model was retrained in semi-supervised manner with both labeled and unlabeled data. The experiment results demonstrate that the presented method can improve performance with a small amount of labeled data and reduce the cost of labeling through active learning It is more feasible to be used in real network environment.
作者 刘敬 谷利泽 钮心忻 杨义先
机构地区 北京邮电大学信息安全中心 解放军
出处 《通信学报》 EI CSCD 北大核心 2015年第11期136-146,共11页 Journal on Communications
基金 国家自然科学基金资助项目(61202082 61370194)~~
关键词 网络安全 异常检测 单分类支持向量机 主动学习 network security anomaly detection one-class SVM active learning
分类号 TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献19

  • 1LEE W, STOLFO S J. A framework for constructing features andmodels for intrusion detection systems[J]. ACM Transactions on In-formation and System Security, 2000,3(4):227-261.
  • 2LI M. An approach to reliably identifying signs of DDOS flood attacksbased on LRD traffic pattern recognition[J]. Computers & Security,2004,23(7):549-558.
  • 3诸葛建伟,王大为,陈昱,叶志远,邹维.基于D-S证据理论的网络异常检测方法[J].软件学报,2006,17(3):463-471. 被引量:54
  • 4钱叶魁,陈鸣,叶立新,刘凤荣,朱少卫,张晗.基于多尺度主成分分析的全网络异常检测方法[J].软件学报,2012,23(2):361-377. 被引量:43
  • 5WEI L, GHORBANI A A. Network anomaly detection based onwavelet analysis[J]. EURASIP Journal on Advances in Signal Proc-essing, 2009,12(5):1234-1249.
  • 6LI M. Change trend of averaged Hurst parameter of traffic underDDOS flood attacks[J]. Computers & Security, 2006,25(3):213-220.
  • 7WANG Y, WONG J, MINER A. Anomaly intrusion detection usingone class SVM[A]. Proceedings of the Fifth Annual IEEE SMC onInformation Assurance Workshop[C]. 2004.358-364.
  • 8MA J, DAI G Z, XU Z. Network anomaly detection using dissimilar-ity-based one-class SVM cl肪sifier[A]. Proceedings of the Interna-tional Conference on Parallel Processing[C]. 2009. 409-414.
  • 9BARANI F, GERAMI S. ManetSVM: dynamic anomaly detectionusing one-class support vector machine in MANETs[A]. Proceedingsof 10th International ISC Conference on Information Security andCryptology[C]. 2013.1-6.
  • 10CHEN Y T, QIAN J, SALIGRAMA V. A new one-class SVM foranomaly detection[A]. IEEE International Conference on Acoustics,Speech and Signal Processing[C]. 2013.3567-3571.

二级参考文献47

共引文献129

同被引文献191

引证文献31

二级引证文献161

通信学报
2015年 第11期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部