Article

Graph-based anomaly detection

Authors:

Caleb C. Noble,

Diane J. CookAuthors Info & Claims

KDD '03: Proceedings of the ninth ACM SIGKDD international conference on Knowledge discovery and data mining

Pages 631 - 636

https://doi.org/10.1145/956750.956831

Published: 24 August 2003 Publication History

Get Access

Abstract

Anomaly detection is an area that has received much attention in recent years. It has a wide variety of applications, including fraud detection and network intrusion detection. A good deal of research has been performed in this area, often using strings or attribute-value data as the medium from which anomalies are to be extracted. Little work, however, has focused on anomaly detection in graph-based data. In this paper, we introduce two techniques for graph-based anomaly detection. In addition, we introduce a new method for calculating the regularity of a graph, with applications to anomaly detection. We hypothesize that these methods will prove useful both for finding anomalies, and for determining the likelihood of successful anomaly detection within graph-based data. We provide experimental results using both real-world network intrusion data and artificially-created data.

References

[1]

Cook, D. J. and Holder, L. B. Graph-Based Data Mining. IEEE Intelligent Systems, 15(2), pages 32--41, 2000.

Digital Library

Google Scholar

[2]

Lee, W. and Xiang, D. Information-Theoretic Measures for Anomaly Detection. Proceedings of The 2001 IEEE Symposium on Security and Privacy, Oakland, CA, May 2001.

Digital Library

Google Scholar

[3]

Maxion, R. A. and Tan, K. M. C. Benchmarking Anomaly-Based Detection Systems. International Conference on Dependable Systems and Networks, pages 623--630, New York, New York; 25--28 June 2000.

Digital Library

Google Scholar

[4]

Miller, G. A. Note on the Bias of Information Estimates. Information Theory in Psychology: Problems and Methods, Free Press, 1955.

Google Scholar

[5]

Rissanen, J. Stochastic Complexity in Statistical Inquiry. World Scientific Publishing Company, 1989.

Digital Library

Google Scholar

[6]

http://kdd.ics.uci.edu/databases/kddcup99/kddcup99.html

Google Scholar

Cited By

View all

Lin ZMeng KShui CZhang KXiao JTan GLee IChabbi MSteuwer M(2024)Exploiting Fine-Grained Redundancy in Set-Centric Graph Pattern MiningProceedings of the 29th ACM SIGPLAN Annual Symposium on Principles and Practice of Parallel Programming10.1145/3627535.3638507(175-187)Online publication date: 2-Mar-2024
https://dl.acm.org/doi/10.1145/3627535.3638507
Liu MTu ZSu TWang XXu XWang Z(2024)BehaviorNet: A Fine-grained Behavior-aware Network for Dynamic Link PredictionACM Transactions on the Web10.1145/358051418:2(1-26)Online publication date: 8-Jan-2024
https://dl.acm.org/doi/10.1145/3580514
Mir AZuhairi MMusa SNamoun A(2024)Adaptive Anomaly Detection in Dynamic Graph Networks2024 International Visualization, Informatics and Technology Conference (IVIT)10.1109/IVIT62102.2024.10692372(200-206)Online publication date: 7-Aug-2024
https://doi.org/10.1109/IVIT62102.2024.10692372
Show More Cited By

Index Terms

Graph-based anomaly detection
1. Information systems
  1. Information systems applications
    1. Data mining

Recommendations

Two-stage anomaly detection algorithm via dynamic community evolution in temporal graph
Abstract
Detecting anomalies from a massive amount of user behavioral data is often liken to finding a needle in a haystack. While tremendous efforts have been devoted to anomaly detection from temporal graphs, existing studies rarely consider community ...
Graph based anomaly detection and description: a survey

Detecting anomalies in data is a vital task, with numerous high-impact applications in areas such as security, finance, health care, and law enforcement. While numerous techniques have been developed in past years for spotting outliers and anomalies in ...
Scalable anomaly detection in graphs

The advantage of graph-based anomaly detection is that the relationships between elements can be analyzed for structural oddities that could represent activities such as fraud, network intrusions, or suspicious associations in a social network. ...

Comments

Information & Contributors

Information

Published In

KDD '03: Proceedings of the ninth ACM SIGKDD international conference on Knowledge discovery and data mining

August 2003

736 pages

ISBN:1581137370

DOI:10.1145/956750

Conference Chair:
Lise Getoor
University of Maryland, College Park
,
General Chair:
Ted Senator
DARPA
,
Program Chairs:
Pedro Domingos
University of Washington
,
Christos Faloutsos
Carnegie Mellon University

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 24 August 2003

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Article

Conference

KDD03

Sponsor:

KDD03: The Ninth ACM SIGKDD International Conference on Knowledge Discovery and Data Mining

August 24 - 27, 2003

Washington, D.C.

Acceptance Rates

KDD '03 Paper Acceptance Rate 46 of 298 submissions, 15%;

Overall Acceptance Rate 1,133 of 8,635 submissions, 13%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

284
Total Citations
View Citations
5,470
Total Downloads

Downloads (Last 12 months)358
Downloads (Last 6 weeks)31

Reflects downloads up to 09 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Lin ZMeng KShui CZhang KXiao JTan GLee IChabbi MSteuwer M(2024)Exploiting Fine-Grained Redundancy in Set-Centric Graph Pattern MiningProceedings of the 29th ACM SIGPLAN Annual Symposium on Principles and Practice of Parallel Programming10.1145/3627535.3638507(175-187)Online publication date: 2-Mar-2024
https://dl.acm.org/doi/10.1145/3627535.3638507
Liu MTu ZSu TWang XXu XWang Z(2024)BehaviorNet: A Fine-grained Behavior-aware Network for Dynamic Link PredictionACM Transactions on the Web10.1145/358051418:2(1-26)Online publication date: 8-Jan-2024
https://dl.acm.org/doi/10.1145/3580514
Mir AZuhairi MMusa SNamoun A(2024)Adaptive Anomaly Detection in Dynamic Graph Networks2024 International Visualization, Informatics and Technology Conference (IVIT)10.1109/IVIT62102.2024.10692372(200-206)Online publication date: 7-Aug-2024
https://doi.org/10.1109/IVIT62102.2024.10692372
P NV MGopal Reddy BNaga Ramya Sri PGayathri NDastagiri Reddy T(2024)Data Insights Nexus-Innovative Platform for Dynamic Modeling and Visual Analytics2024 International Conference on Inventive Computation Technologies (ICICT)10.1109/ICICT60155.2024.10544527(273-280)Online publication date: 24-Apr-2024
https://doi.org/10.1109/ICICT60155.2024.10544527
Bae JPark HChung MRaza Khan MLee K(2024)Signed Graph Laplacian for Semi-Supervised Anomaly Detection2024 International Conference on Artificial Intelligence in Information and Communication (ICAIIC)10.1109/ICAIIC60209.2024.10463267(102-107)Online publication date: 19-Feb-2024
https://doi.org/10.1109/ICAIIC60209.2024.10463267
Li YLi JKao HTsai Y(2024)Fiber Optical Module Anomaly Detection Using Graph Deep Learning Model2024 International Conference on Computer, Information and Telecommunication Systems (CITS)10.1109/CITS61189.2024.10607993(1-5)Online publication date: 17-Jul-2024
https://doi.org/10.1109/CITS61189.2024.10607993
Koca MAvci I(2024)A Novel Hybrid Model Detection of Security Vulnerabilities in Industrial Control Systems and IoT Using GCN+LSTMIEEE Access10.1109/ACCESS.2024.346639112(143343-143351)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2024.3466391
Lyu HKureh YVendrow JPorter M(2024)Learning low-rank latent mesoscale structures in networksNature Communications10.1038/s41467-023-42859-215:1Online publication date: 3-Jan-2024
https://doi.org/10.1038/s41467-023-42859-2
Yang JZhou KLi YLiu Z(2024)Generalized Out-of-Distribution Detection: A SurveyInternational Journal of Computer Vision10.1007/s11263-024-02117-4Online publication date: 23-Jun-2024
https://doi.org/10.1007/s11263-024-02117-4
Mignone PCorizzo RCeci M(2024)Distributed and explainable GHSOM for anomaly detection in sensor networksMachine Language10.1007/s10994-023-06501-y113:7(4445-4486)Online publication date: 1-Jul-2024
https://dl.acm.org/doi/10.1007/s10994-023-06501-y
Show More Cited By

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Two-stage anomaly detection algorithm via dynamic community evolution in temporal graph

Graph based anomaly detection and description: a survey

Scalable anomaly detection in graphs