ScienceGate Book Chapters
JOURNAL ARTICLE

An effective unsupervised network anomaly detection method

Monowar BhuyanDhruba K. BhattacharyyaJugal Kalita

Year: 2012 Pages: 533-539
DOI: 10.1145/2345396.2345484
   Get Full-Text PDF    Get Analytical Report

Abstract

In this paper, we present an effective tree based subspace clustering technique (TreeCLUS) for finding clusters in network intrusion data and for detecting unknown attacks without using any labelled traffic or signatures or training. To establish its effectiveness in finding all possible clusters, we perform a cluster stability analysis. We also introduce an effective cluster labelling technique (CLUSLab) to generate labelled dataset based on the stable cluster set generated by TreeCLUS. CLUSLab is a multi-objective technique that exploits an ensemble approach for stability analysis of the clusters generated by TreeCLUS. We evaluate the performance of both TreeCLUS and CLUSLab in terms of several real world intrusion datasets to identify unknown attacks and find that both outperform the competing algorithms.

Keywords:
Computer science Cluster analysis Data mining Exploit Intrusion detection system Subspace topology Anomaly detection Stability (learning theory) Cluster (spacecraft) Set (abstract data type) Artificial intelligence Pattern recognition (psychology) Decision tree Machine learning

Metrics

45
Cited By
5.31
FWCI (Field Weighted Citation Impact)
27
Refs
0.96
Citation Normalized Percentile
Is in top 1%
Is in top 10%

Citation History

Topics

Network Security and Intrusion Detection
Physical Sciences →  Computer Science →  Computer Networks and Communications
Anomaly Detection Techniques and Applications
Physical Sciences →  Computer Science →  Artificial Intelligence
Internet Traffic Analysis and Secure E-voting
Physical Sciences →  Computer Science →  Artificial Intelligence

Related Documents

JOURNAL ARTICLE

Online and Scalable Unsupervised Network Anomaly Detection Method

Juliette DromardGilles RoudièrePhilippe Owezarski

Journal:   IEEE Transactions on Network and Service Management Year: 2016 Vol: 14 (1)Pages: 34-47
JOURNAL ARTICLE

Unsupervised and Ensemble-based Anomaly Detection Method for Network Security

Donghun YangMyunggwon Hwang

Year: 2022 Pages: 75-79
JOURNAL ARTICLE

An effective method for computer network anomaly detection

Dongpo WangChengli ZhaoXue ZhangBoyu LiuXiang LiDongyun Yi

Journal:   Journal of Physics Conference Series Year: 2020 Vol: 1693 (1)Pages: 012050-012050
BOOK-CHAPTER

Unsupervised Microservice Log Anomaly Detection Method Based on Graph Neural Network

Xue LiangLixiang LiHaipeng Peng

Lecture notes in computer science Year: 2024 Pages: 197-208
JOURNAL ARTICLE

Network Data Unsupervised Clustering to Anomaly Detection

Manuel López-VizcaínoCarlos DafonteFrancisco J. NóvoaD. GarabatoM. A. Álvarez

Year: 2018 Pages: 1173-1173
© 2026 ScienceGate Book Chapters — All rights reserved.