Title :
Intrusion detection based on k-means clustering and OneR classification
Author :
Muda, Z. ; Yassin, W. ; Sulaiman, M.N. ; Udzir, N.I.
Author_Institution :
Fac. of Comput. Sci. & Inf., Univ. Putra Malaysia, Serdang, Malaysia
Abstract :
Intrusion detection system (IDS) is used to detect various kinds of attacks in interconnected network. Many machine learning methods have also been introduced by researcher recently to obtain high accuracy and detection rate. Unfortunately, a potential drawback of all those methods is the rate of false alarm. However, our proposed approach shows better results, by combining clustering (to identify groups of similarly behaved samples, i.e. malicious and non-malicious activity) and classification techniques (to classify all data into correct class categories). The approach, KM+1R, combines the k-means clustering with the OneR classification technique. The KDD Cup ´99 set is used as a simulation dataset. The result shows that our proposed approach achieve a better accuracy and detection rate, particularly in reducing the false alarm.
Keywords :
learning (artificial intelligence); pattern clustering; security of data; IDS; KM+1R; OneR classification; intrusion detection system; k-means clustering; machine learning methods; Accuracy; Intrusion detection; Probes; Support vector machines; Testing; Training; Classification; Clustering; Intrusion Detection System; Machine Learning;
Conference_Titel :
Information Assurance and Security (IAS), 2011 7th International Conference on
Conference_Location :
Melaka
Print_ISBN :
978-1-4577-2154-0
DOI :
10.1109/ISIAS.2011.6122818
