Anomaly internet network traffic detection by kernel principle component classifier

Hanghang Tong; Chongrong Li; Jingrui He; Jiajian Chen; Quang Anh Tran; Haixin Duan; Xing Li

doi:10.1007/11427469_77

Anomaly internet network traffic detection by kernel principle component classifier

Hanghang Tong, Chongrong Li, Jingrui He, Jiajian Chen, Quang Anh Tran, Haixin Duan, Xing Li

Research output: Contribution to journal › Conference article › peer-review

Abstract

As a crucial issue in computer network security, anomaly detection is receiving more and more attention from both application and theoretical point of view. In this paper, a novel anomaly detection scheme is proposed. It can detect anomaly network traffic which has extreme large value on some original feature by the major component, or does not follow the correlation structure of normal traffic by the minor component. By introducing kernel trick, the non-linearity of network traffic can be well addressed. To save the processing time, a simplified version is also proposed, where only major component is adopted. Experimental results validate the effectiveness of the proposed scheme.

Original language	English (US)
Pages (from-to)	476-481
Number of pages	6
Journal	Lecture Notes in Computer Science
Volume	3498
Issue number	III
DOIs	https://doi.org/10.1007/11427469_77
State	Published - 2005
Externally published	Yes
Event	Second International Symposium on Neural Networks: Advances in Neural Networks - ISNN 2005 - Chongqing, China Duration: May 30 2005 → Jun 1 2005

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Online availability

10.1007/11427469_77

Library availability

Discover UIUC Full Text

Cite this

@article{17011d9d8f194b4896c61e043e0ba888,

title = "Anomaly internet network traffic detection by kernel principle component classifier",

abstract = "As a crucial issue in computer network security, anomaly detection is receiving more and more attention from both application and theoretical point of view. In this paper, a novel anomaly detection scheme is proposed. It can detect anomaly network traffic which has extreme large value on some original feature by the major component, or does not follow the correlation structure of normal traffic by the minor component. By introducing kernel trick, the non-linearity of network traffic can be well addressed. To save the processing time, a simplified version is also proposed, where only major component is adopted. Experimental results validate the effectiveness of the proposed scheme.",

author = "Hanghang Tong and Chongrong Li and Jingrui He and Jiajian Chen and Tran, {Quang Anh} and Haixin Duan and Xing Li",

year = "2005",

doi = "10.1007/11427469_77",

language = "English (US)",

volume = "3498",

pages = "476--481",

journal = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

issn = "0302-9743",

publisher = "Springer",

number = "III",

note = "Second International Symposium on Neural Networks: Advances in Neural Networks - ISNN 2005 ; Conference date: 30-05-2005 Through 01-06-2005",

}

TY - JOUR

T1 - Anomaly internet network traffic detection by kernel principle component classifier

AU - Tong, Hanghang

AU - Li, Chongrong

AU - He, Jingrui

AU - Chen, Jiajian

AU - Tran, Quang Anh

AU - Duan, Haixin

AU - Li, Xing

PY - 2005

Y1 - 2005

N2 - As a crucial issue in computer network security, anomaly detection is receiving more and more attention from both application and theoretical point of view. In this paper, a novel anomaly detection scheme is proposed. It can detect anomaly network traffic which has extreme large value on some original feature by the major component, or does not follow the correlation structure of normal traffic by the minor component. By introducing kernel trick, the non-linearity of network traffic can be well addressed. To save the processing time, a simplified version is also proposed, where only major component is adopted. Experimental results validate the effectiveness of the proposed scheme.

AB - As a crucial issue in computer network security, anomaly detection is receiving more and more attention from both application and theoretical point of view. In this paper, a novel anomaly detection scheme is proposed. It can detect anomaly network traffic which has extreme large value on some original feature by the major component, or does not follow the correlation structure of normal traffic by the minor component. By introducing kernel trick, the non-linearity of network traffic can be well addressed. To save the processing time, a simplified version is also proposed, where only major component is adopted. Experimental results validate the effectiveness of the proposed scheme.

UR - http://www.scopus.com/inward/record.url?scp=24944518771&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=24944518771&partnerID=8YFLogxK

U2 - 10.1007/11427469_77

DO - 10.1007/11427469_77

M3 - Conference article

AN - SCOPUS:24944518771

VL - 3498

SP - 476

EP - 481

JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SN - 0302-9743

IS - III

T2 - Second International Symposium on Neural Networks: Advances in Neural Networks - ISNN 2005

Y2 - 30 May 2005 through 1 June 2005

ER -

Anomaly internet network traffic detection by kernel principle component classifier

Abstract

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this