Volume 40 Issue 6
May  2017
Article Contents
Article Navigation >  Journal of University of Electronic Science and Technology of China  > 2011  >  40(6): 892-897

YANG Xiao-long, ZHANG Min, HU Wu-sheng, XU Jie, LONG Ke-ping. IP Network Anomalous Behaviors Detection Mechanism Based on Cusp-Catastrophe Model[J]. Journal of University of Electronic Science and Technology of China, 2011, 40(6): 892-897. doi: 10.3969/j.issn.1001-0548.2011.06.017
Citation: YANG Xiao-long, ZHANG Min, HU Wu-sheng, XU Jie, LONG Ke-ping. IP Network Anomalous Behaviors Detection Mechanism Based on Cusp-Catastrophe Model[J]. Journal of University of Electronic Science and Technology of China, 2011, 40(6): 892-897. doi: 10.3969/j.issn.1001-0548.2011.06.017
shu

IP Network Anomalous Behaviors Detection Mechanism Based on Cusp-Catastrophe Model

doi: 10.3969/j.issn.1001-0548.2011.06.017
  • 1.

    School of Computer and Communication Engineering,University of Science and Technology Beijing Haidian Beijing 100083;

  • 2.

    School of Communications and Information Engineering,University of Electronic Science and Technology of China Chengdu 611731

  • Received Date: 2010-03-15
  • Rev Recd Date: 2011-05-20
  • Publish Date: 2011-12-15
  • Some traditional anomaly detection mechanisms (such as data mining and Bayes methods) have much poorer performance in terms of detection rate and false alarm rate because they consider only the normal behavior feature of IP networks, and neglect that of the abnormal behaviors. Motivate by the situations, this paper proposed a new characterization model of abnormal behaviors, and also developed an anomaly detection mechanism based on cusp-catastrophe for IP networks. They not only make the best of the prominent features of cusp-catastrophe in terms of multiple steady states and discontinuous catastrophe, and also can describe the normal behavior features and abnormal ones. Finally under Kdd-Cup 99 datasets, the proposed mechanism is evaluated, and the evaluation result shows that its detection rate and the false detection have greatly been improved compared with BN and C4.5.
  • 加载中
通讯作者: 陈斌, bchen63@163.com
  • 1. 

    沈阳化工大学材料科学与工程学院 沈阳 110142

  1. 本站搜索
  2. 百度学术搜索
  3. 万方数据库搜索
  4. CNKI搜索
Get Citation
PDF
XML

Article Metrics

Article views(3660) PDF downloads(40) Cited by()

Related
Proportional views

IP Network Anomalous Behaviors Detection Mechanism Based on Cusp-Catastrophe Model

doi: 10.3969/j.issn.1001-0548.2011.06.017
  • 1. School of Computer and Communication Engineering,University of Science and Technology Beijing Haidian Beijing 100083;
  • 2. School of Communications and Information Engineering,University of Electronic Science and Technology of China Chengdu 611731
  • Received Date: 2010-03-15
  • Rev Recd Date: 2011-05-20
  • Publish Date: 2011-12-15

Abstract: Some traditional anomaly detection mechanisms (such as data mining and Bayes methods) have much poorer performance in terms of detection rate and false alarm rate because they consider only the normal behavior feature of IP networks, and neglect that of the abnormal behaviors. Motivate by the situations, this paper proposed a new characterization model of abnormal behaviors, and also developed an anomaly detection mechanism based on cusp-catastrophe for IP networks. They not only make the best of the prominent features of cusp-catastrophe in terms of multiple steady states and discontinuous catastrophe, and also can describe the normal behavior features and abnormal ones. Finally under Kdd-Cup 99 datasets, the proposed mechanism is evaluated, and the evaluation result shows that its detection rate and the false detection have greatly been improved compared with BN and C4.5.

YANG Xiao-long, ZHANG Min, HU Wu-sheng, XU Jie, LONG Ke-ping. IP Network Anomalous Behaviors Detection Mechanism Based on Cusp-Catastrophe Model[J]. Journal of University of Electronic Science and Technology of China, 2011, 40(6): 892-897. doi: 10.3969/j.issn.1001-0548.2011.06.017
Citation: YANG Xiao-long, ZHANG Min, HU Wu-sheng, XU Jie, LONG Ke-ping. IP Network Anomalous Behaviors Detection Mechanism Based on Cusp-Catastrophe Model[J]. Journal of University of Electronic Science and Technology of China, 2011, 40(6): 892-897. doi: 10.3969/j.issn.1001-0548.2011.06.017
shu

    HTML

Catalog

    Journal Online

    Author's Notes

    Links

    Copyright © 《电子科技大学学报》编辑部

    Address: Room 350, central building, University of Electronic Science and Technology, No.4, Section 2, Jianshe North Road, ChengduTel: 028-83202308,83207559Email: xuebao@uestc.edu.cn

    本系统由 北京仁和汇智信息技术有限公司 开发 

    /

    DownLoad:  Full-Size Img  PowerPoint
    Return
    Return