Performance of interval-based features for anomaly detection in network traffic
暂无分享,去创建一个
In this study, the authors conducted a series of experiments to examine which interval-based features are suitable for a particular type of attack. The authors also compared detection performance between individual features and a combination of all features. In our experiments, the authors applied well-known learning algorithms, namely multivariate normal distribution, k-nearest neighbor, and support vector machine, to explore detection performance.
[1] C. J. van Rijsbergen,et al. Information Retrieval , 1979, Encyclopedia of GIS.
[2] R.K. Cunningham,et al. Evaluating intrusion detection systems: the 1998 DARPA off-line intrusion detection evaluation , 2000, Proceedings DARPA Information Survivability Conference and Exposition. DISCEX'00.
[3] Fukuda Kensuke,et al. A wavelet-based anomaly detection for outbound network traffic , 2010, 8th Asia-Pacific Symposium on Information and Telecommunication Technologies.