A network-based anomaly detection system using multiple network features

Yuji Waizumi, Yohei Sato, Yoshiaki Nemoto

Research output: Contribution to conferencePaper

2 Citations (Scopus)

Abstract

Accuracy of anomaly-based intrusion detection greatly depends on features, the numerical values representing characteristics of network traffic. In order to increase accuracy, it is necessary to choose appropriate features that can correctly detect anomalous events. In this paper, we stress the fact that a specific kind of anomaly changes specific features. We propose a highly accurate and robust intrusion detection system using multiple features. Each feature is used for evaluating anomalous events independently by a statistical detection method. Through experiments, we investigate the accuracy of the proposed scheme.

Original languageEnglish
Pages410-413
Number of pages4
Publication statusPublished - 2007 Dec 1
Event3rd International Conference on Web Information Systems and Technologies, Webist 2007 - Barcelona, Spain
Duration: 2007 Mar 32007 Mar 6

Other

Other3rd International Conference on Web Information Systems and Technologies, Webist 2007
CountrySpain
CityBarcelona
Period07/3/307/3/6

Keywords

  • Anomaly Detection
  • Intrusion Detection System
  • Multiple Network Features
  • Principal Component Analysis

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture
  • Information Systems
  • Electrical and Electronic Engineering

Fingerprint Dive into the research topics of 'A network-based anomaly detection system using multiple network features'. Together they form a unique fingerprint.

  • Cite this

    Waizumi, Y., Sato, Y., & Nemoto, Y. (2007). A network-based anomaly detection system using multiple network features. 410-413. Paper presented at 3rd International Conference on Web Information Systems and Technologies, Webist 2007, Barcelona, Spain.