BAE: Anomaly Detection Algorithm Based on Clustering and Autoencoder-Reference-Cited by-同舟云学术

BAE: Anomaly Detection Algorithm Based on Clustering and Autoencoder

Published:2023-08-03 Issue:15 Volume:11 Page:3398
ISSN:2227-7390
Container-title:Mathematics
language:en
Short-container-title:Mathematics

Author:

Wang Dongqi¹,Nie Mingshuo¹^ORCID,Chen Dongming¹^ORCID

Affiliation:

1. Software College, Northeastern University, Shenyang 110169, China

Abstract

In this paper, we propose an outlier-detection algorithm for detecting network traffic anomalies based on a clustering algorithm and an autoencoder model. The BIRCH clustering algorithm is employed as the pre-algorithm of the autoencoder to pre-classify datasets with complex data distribution characteristics, while the autoencoder model is used to detect outliers based on a threshold. The proposed BIRCH-Autoencoder (BAE) algorithm has been tested on four network security datasets, KDDCUP99, UNSW-NB15, CICIDS2017, and NSL-KDD, and compared with representative algorithms. The BAE algorithm achieved average F-scores of 96.160, 81.132, and 91.424 on the KDDCUP99, UNSW-NB15, and CICIDS2017 datasets, respectively. These experimental results demonstrate that the proposed approach can effectively and accurately detect anomalous data.

Funder

Natural Science Foundation of Liaoning Provincial Department of Science and Technology

Fundamental Research Funds for the Central Universities

Publisher

MDPI AG

Subject

General Mathematics,Engineering (miscellaneous),Computer Science (miscellaneous)

Link

https://www.mdpi.com/2227-7390/11/15/3398/pdf

Reference31 articles.

1. Engly, A.H., Larsen, A.R., and Meng, W. (2020, January 25–27). Evaluation of Anomaly-Based Intrusion Detection with Combined Imbalance Correction and Feature Selection. Proceedings of the International Conference on Network and System Security, Melbourne, Australia.

2. Hussain, A., Heidemann, J., and Papadopoulos, C. (2003, January 25–29). A framework for classifying denial of service attacks. Proceedings of the 2003 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communications, Karlsruhe, Germany.

3. Stacked denoising autoencoders: Learning useful representations in a deep network with a local denoising criterion;Vincent;J. Mach. Learn. Res.,2010

4. Deep learning approach combining sparse autoencoder with SVM for network intrusion detection;Lasheng;IEEE Access,2018

5. Kingma, D.P., and Welling, M. (2013). Auto-encoding variational bayes. arXiv.

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A multi-step attack identification and correlation method based on multi-information fusion;Computers and Electrical Engineering;2024-07

2. Reinforcing Network Security: Network Attack Detection Using Random Grove Blend in Weighted MLP Layers;Mathematics;2024-05-31

3. Advancing Network Survivability and Reliability: Integrating XAI-Enhanced Autoencoders and LDA for Effective Detection of Unknown Attacks;2024 20th International Conference on the Design of Reliable Communication Networks (DRCN);2024-05-06

4. Comparative Analysis of Outlier Elimination Algorithms on Pulsar Stars Dataset;2024 International Conference on Emerging Smart Computing and Informatics (ESCI);2024-03-05