论文信息 - An Algorithm for K-LVQ Abnormal Traffic Classification Based on Information Entropy

An Algorithm for K-LVQ Abnormal Traffic Classification Based on Information Entropy

Previous researches on abnormal traffic detection mainly focus on how to detect outliers. For some detection methods based on classification, most of the anomaly classification is simultaneous detection and detection, and most of the samples are normal traffic. On the one hand, the classification accuracy is not high, on the other hand, it is not conducive to identify the specific types of abnormal traffic. For this reason, a method of classifying and identifying abnormal traffic is proposed: K-LVQ classification algorithm based on information entropy. On the basis of quantifying the entropy of each attribute of abnormal flow, firstly clustering and locating the abnormal sample points, and then learning the vector quantization neural network (LVQ) method to determine the recognition. Make full use of K-Means efficient and LVQ accurate features. The simulation results and measured data show that the average accuracy of classification and recognition can reach more than 89%.

[1] Zhang Jian. Network Traffic Identification Based on Online Clustering , 2011 .

[2] Fengling Wang. Research on Application of Improved K-means Algorithm in Network Intrusion Detection , 2018, J. Softw..

[3] Wei Li,et al. Approaching Real-time Network Traffic Classification , 2013 .

[4] Vyas Sekar,et al. Data streaming algorithms for estimating entropy of network traffic , 2006, SIGMETRICS '06/Performance '06.

[5] Jens Myrup Pedersen,et al. A method for classification of network traffic based on C5.0 Machine Learning Algorithm , 2012, 2012 International Conference on Computing, Networking and Communications (ICNC).

[6] Renata Teixeira,et al. Traffic classification on the fly , 2006, CCRV.

[7] Xu Qian,et al. Network Traffic Anomaly Classification Algorithm Based on Hierarchical Clustering , 2012 .