Article

Parzen-Window Network Intrusion Detectors

Author:

Calvin ChowAuthors Info & Claims

ICPR '02: Proceedings of the 16 th International Conference on Pattern Recognition (ICPR'02) Volume 4 - Volume 4

Page 40385

Published: 11 August 2002 Publication History

Publisher Site

Abstract

Network intrusion detection is the problem of detecting anomalous network connections caused by intrusive activities. Many intrusion detection systems proposed before use both normal and intrusion data to build their classifiers. However, intrusion data are usually scarce and difficult to collect. We propose to solve this problem using a novelty detection approach. In particular, we propose to take a nonparametric density estimation approach based on Parzen-window estimators with Gaussian kernels to build an intrusion detection system using normal data only. To facilitate comparison, we have tested our system on the KDD Cup 1999 dataset. Our system compares favorably with the KDD Cup winner which is based on an ensemble of decision trees with bagged boosting, as our system uses no intrusion data at all and much less normal data for training.

Cited By

View all

Pauwels SCalders T(2019)Detecting anomalies in hybrid business process logsACM SIGAPP Applied Computing Review10.1145/3357385.335738719:2(18-30)Online publication date: 15-Aug-2019
https://dl.acm.org/doi/10.1145/3357385.3357387
Abdallah ZGaber MSrinivasan BKrishnaswamy S(2018)Activity Recognition with Evolving Data StreamsACM Computing Surveys10.1145/315864551:4(1-36)Online publication date: 6-Jul-2018
https://dl.acm.org/doi/10.1145/3158645
Wang HCai YFu GWu MWei Z(2018)Data-driven fault prediction and anomaly measurement for complex systems using support vector probability density estimationEngineering Applications of Artificial Intelligence10.1016/j.engappai.2017.09.00867:C(1-13)Online publication date: 1-Jan-2018
https://dl.acm.org/doi/10.1016/j.engappai.2017.09.008
Show More Cited By

Recommendations

Network intrusion detection

Intrusion detection is a new, retrofit approach for providing a sense of security in existing computers and data networks, while allowing them to operate in their current "open" mode. The goal of intrusion detection is to identify unauthorized use, ...
Network intrusion detection: stepping-stone and masquerader detections
Network Intrusion Detection: Automated and Manual Methods Prone to Attack and Evasion

In this article, the authors describe common intrusion detection techniques, NIDS evasion methods, and how NIDSs detect intrusions. Additionally, we introduce new evasion methods, present test results for confirming attack outcomes based on server ...

Comments

Information & Contributors

Information

Published In

ICPR '02: Proceedings of the 16 th International Conference on Pattern Recognition (ICPR'02) Volume 4 - Volume 4

August 2002

ISBN:076951695X

Publisher

IEEE Computer Society

United States

Publication History

Published: 11 August 2002

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

26
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 09 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Pauwels SCalders T(2019)Detecting anomalies in hybrid business process logsACM SIGAPP Applied Computing Review10.1145/3357385.335738719:2(18-30)Online publication date: 15-Aug-2019
https://dl.acm.org/doi/10.1145/3357385.3357387
Abdallah ZGaber MSrinivasan BKrishnaswamy S(2018)Activity Recognition with Evolving Data StreamsACM Computing Surveys10.1145/315864551:4(1-36)Online publication date: 6-Jul-2018
https://dl.acm.org/doi/10.1145/3158645
Wang HCai YFu GWu MWei Z(2018)Data-driven fault prediction and anomaly measurement for complex systems using support vector probability density estimationEngineering Applications of Artificial Intelligence10.1016/j.engappai.2017.09.00867:C(1-13)Online publication date: 1-Jan-2018
https://dl.acm.org/doi/10.1016/j.engappai.2017.09.008
Krishnasamy SSen RShakkottai SOh S(2016)Detecting Sponsored RecommendationsACM Transactions on Modeling and Performance Evaluation of Computing Systems10.1145/29885432:1(1-29)Online publication date: 18-Nov-2016
https://dl.acm.org/doi/10.1145/2988543
Vasudevan ASelvakumar S(2016)Local outlier factor and stronger one class classifier based hierarchical model for detection of attacks in network intrusion detection datasetFrontiers of Computer Science: Selected Publications from Chinese Universities10.1007/s11704-015-5116-810:4(755-766)Online publication date: 1-Aug-2016
https://dl.acm.org/doi/10.1007/s11704-015-5116-8
Faria EGonçalves ICarvalho AGama J(2016)Novelty detection in data streamsArtificial Intelligence Review10.1007/s10462-015-9444-845:2(235-269)Online publication date: 1-Feb-2016
https://dl.acm.org/doi/10.1007/s10462-015-9444-8
Faria EGama JCarvalho AShin SMaldonado J(2013)Novelty detection algorithm for data streams multi-class problemsProceedings of the 28th Annual ACM Symposium on Applied Computing10.1145/2480362.2480515(795-800)Online publication date: 18-Mar-2013
https://dl.acm.org/doi/10.1145/2480362.2480515
Chaibi ALebbah MAzzag H(2012)Novelty detection using a new group outlier factorProceedings of the 19th international conference on Neural Information Processing - Volume Part III10.1007/978-3-642-34487-9_45(364-372)Online publication date: 12-Nov-2012
https://dl.acm.org/doi/10.1007/978-3-642-34487-9_45
Bellinger COommen B(2012)On the pattern recognition and classification of stochastically episodic eventsTransactions on Compuational Collective Intelligence VI10.1007/978-3-642-29356-6_1(1-35)Online publication date: 1-Jan-2012
https://dl.acm.org/doi/10.1007/978-3-642-29356-6_1
Yampolskiy RReznik LAdams MHarlow JNovikov D(2011)Resource awareness in computational intelligenceInternational Journal of Advanced Intelligence Paradigms10.1504/IJAIP.2011.0434333:3/4(305-322)Online publication date: 1-Oct-2011
https://dl.acm.org/doi/10.1504/IJAIP.2011.043433
Show More Cited By

Abstract

Cited By

Recommendations

Network intrusion detection

Network intrusion detection: stepping-stone and masquerader detections

Network Intrusion Detection: Automated and Manual Methods Prone to Attack and Evasion

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations