ScienceGate Book Chapters
JOURNAL ARTICLE

An Entropy-Based Network Anomaly Detection Method

Przemysław BerezińskiBartosz JasiulMarcin Szpyrka

Year: 2015 Journal:   Entropy Vol: 17 (4)Pages: 2367-2408   Publisher: Multidisciplinary Digital Publishing Institute
DOI: 10.3390/e17042367
   Get Full-Text PDF    Get Analytical Report

Abstract

Data mining is an interdisciplinary subfield of computer science involving methods at the intersection of artificial intelligence, machine learning and statistics. One of the data mining tasks is anomaly detection which is the analysis of large quantities of data to identify items, events or observations which do not conform to an expected pattern. Anomaly detection is applicable in a variety of domains, e.g., fraud detection, fault detection, system health monitoring but this article focuses on application of anomaly detection in the field of network intrusion detection.The main goal of the article is to prove that an entropy-based approach is suitable to detect modern botnet-like malware based on anomalous patterns in network. This aim is achieved by realization of the following points: (i) preparation of a concept of original entropy-based network anomaly detection method, (ii) implementation of the method, (iii) preparation of original dataset, (iv) evaluation of the method.

Keywords:
Anomaly detection Computer science Data mining Malware Anomaly-based intrusion detection system Intrusion detection system Entropy (arrow of time) Anomaly (physics) Intersection (aeronautics) Artificial intelligence Botnet Machine learning Engineering Computer security The Internet

Metrics

188
Cited By
13.67
FWCI (Field Weighted Citation Impact)
128
Refs
0.99
Citation Normalized Percentile
Is in top 1%
Is in top 10%

Citation History

Topics

Network Security and Intrusion Detection
Physical Sciences →  Computer Science →  Computer Networks and Communications
Anomaly Detection Techniques and Applications
Physical Sciences →  Computer Science →  Artificial Intelligence
Advanced Malware Detection Techniques
Physical Sciences →  Computer Science →  Signal Processing

Related Documents

JOURNAL ARTICLE

Entropy Based Method for Network Anomaly Detection

Quan QianChe Hong-YiRui Zhang

Year: 2009 Pages: 189-191
JOURNAL ARTICLE

Entropy based network anomaly detection

Vahid Konicanin

Journal:   IBU International Journal of Technical and Natural Sciences Year: 2024 Vol: 4 (1)Pages: 39-54
JOURNAL ARTICLE

Entropy-based network anomaly Detection

Christian CallegariStefano GiordanoMichele Pagano

Journal:   2017 International Conference on Computing, Networking and Communications (ICNC) Year: 2017 Vol: abs 1308 6745 Pages: 334-340
JOURNAL ARTICLE

An efficient entropy-based network anomaly detection method using MIB

Lei ZhaoFu Wang

Year: 2014 Vol: 37 Pages: 428-432
JOURNAL ARTICLE

A Network Anomaly Detection Method Based on Relative Entropy Theory

Yaling ZhangZhao-guo HanRen Jiao-xia

Year: 2009 Vol: 39 Pages: 231-235
© 2026 ScienceGate Book Chapters — All rights reserved.