Intrusion Detection Based on Simulated Annealing and Semi-supervised Clustering

Abstract

Abstract: Because of the absence of supervised data, classical intrusion detection system based on clustering will result in high misdetection rate and low detection rate. In view of this, we propose a method of intrusion detection based on simulated annealing and semi-supervised K-means clustering. This method improves the initial stage of clustering by using a few labeled data of network intrusion first, so the semi-supervised learn method is introduced in the K-means clustering. Then the method combines the ability of simulated annealing algorithm jumping out of the local optimal solution with semi-supervised K-means clustering to get global optimal clustering. Finally, the method identifies the clusters with labeled data and is used in the detection of intruding action. The experiment in the KDDCUP99 data set indicates that the method can improve the clustering algorithm with supervised data and simulated annealing, and obtains an increase in the precision rate of intrusion detection.

Key words: intrusion detection, semi-supervised K-means clustering, simulated annealing

WU Jian1,2, FENG Guo-rui1,2. Intrusion Detection Based on Simulated Annealing and Semi-supervised Clustering[J]. Computer and Modernization.

References

［1］李玉霞,刘丽,沈桂兰. 基于AFSA-SVM的网络入侵检测模型［J］. 计算机工程与应用, 2013,49(24):74-77.
［2］王小伟,王素芳. 基于半监督聚类的免疫入侵检测算法研究［J］. 计算机应用与软件, 2013,30(2):177-179,207.
［3］ Hong J, Su M Y, Chen Y H, et al. A novel intrusion detection system based on hierarchical clustering and support vector machines［J］. Expert Systems with Applications, 2011,38(1):306-313.
［4］ Khan L, Awad M, Thuraisingham B.A new intrusion detection system using support vector machines and hierarchical clustering［J］. The VLDB Journal, 2007,16(4):507-521.
［5］俞研,黄皓. 一种半聚类的异常入侵检测算法［J］. 计算机应用, 2006,26(7):1640-1643.
［6］夏战国,万玲,蔡世玉,等. 一种面向入侵检测的半监督聚类算法［J］. 山东大学学报(工学版), 2012,42(6):1-7.
［7］宋凌,李枚毅,李孝源. 一种新的半监督入侵检测算法［J］. 计算机应用, 2008,28(7):1781-1783.
［8］李洋. K-means聚类算法在入侵检测中的应用［J］. 计算机工程, 2007,33(14):154-156.
［9］ Basu S, Baneriee A, Mooney R. Semi-supervised clustering by seeding［C］// Proceedings of the 19th International Conference on Machine Learning. 2002:19-26.
［10］李昆仑,曹铮,曹丽苹,等. 半监督聚类的若干新进展［J］. 模式识别与人工智能, 2009,22(5):735-742.
［11］黄浩,肖立志,张国毅,等. 基于模拟退火的K-means算法研究［J］. 舰船电子对抗, 2008,31(6):103-105.
［12］吴剑. 基于特征选择的无监督入侵检测方法［J］. 计算机工程与应用, 2011,47(26):79-82.
［13］傅涛,孙亚民. 基于PSO的k-means算法及其在网络入侵检测中的应用［J］. 计算机科学, 2011,38(5):54-55,73.
［14］杨晓强. 一种进化半监督式模糊聚类的入侵检测算法［J］. 计算机工程与应用, 2008,44(4):33-35.
［15］胡耀民,刘伟铭. 面向特征数据范围的泛化LVQ算法［J］. 模式识别与人工智能, 2013,26(8):761-768.

[1]	WANG Shi-yu, XIAO Li-dong, YAN Xin-chun, YING Wen-hao. Extended Isolated Forest Anomaly Detection Algorithm Based on Simulated Annealing [J]. Computer and Modernization, 2023, 0(01): 88-94.
[2]	RAN Hao-jie, WANG Hong-zhi. Distribution Center Site Selection of Fresh Agricultural Products Based on Improved Simulated Annealing Algorithm [J]. Computer and Modernization, 2022, 0(10): 36-40.
[3]	BAI Xue, CHENG Zong-mao. Statistical Analysis of Wireless Sensor Network Monitoring Quality [J]. Computer and Modernization, 2021, 0(08): 1-5.
[4]	LIU Jun, PENG Hui-xian, HUANG Bin, Tony SHAY. Breast Cancer Diagnosis Model Based on BP-GamysBoost [J]. Computer and Modernization, 2021, 0(04): 8-14.
[5]	XIAO Wan-xia1,2, DONG Xing-ye1,2， LIN You-fang1,2. An Iterated Local Search Algorithm for Aircraft Recovery Problem [J]. Computer and Modernization, 2019, 0(09): 1-.
[6]	YI Gui-sheng, HUANG Wen-hua. Application of Memetic Algorithm in Generating Test Paper Intelligently [J]. Computer and Modernization, 2016, 0(11): 114-117,121.
[7]	XIE Xiao-jun1, ZHUO Wen-he1, HU Peng2. Application of Improved SAGA Algorithm in Substation Inspection Job Scheduling [J]. Computer and Modernization, 2016, 0(11): 109-113.
[8]	REN Changrong. An Optimized KFCM Algorithm in Intrusion Detection Based on MCQPSOSA [J]. Computer and Modernization, 2015, 0(2): 90-.
[9]	JIANG Meiyun. Application Research of Genetic Simulated Annealing Algorithm in Cloud Scheduling [J]. Computer and Modernization, 2013, 1(6): 38-41.
[10]	JIANG Meiyun. Application Research of Genetic Simulated Annealing Algorithm in Cloud Scheduling [J]. Computer and Modernization, 2013, 1(6): 38-41.
[11]	QIAN Xiao-yang. Application of Ridge Regression Model Based on Simulated Annealing in Physical Fitness Test [J]. Computer and Modernization, 2013, 1(3): 54-57.
[12]	LIU Ruijie;QIN Fang;ZHAI Yue;WANG Lijuan. Ship Lock Arrangement in Yangtze Gorges Based on Simulated Annealing Algorithm [J]. Computer and Modernization, 2013, 1(11): 65-67.
[13]	RAO Lei;TANG Xiaochun;HOU Zengjiang. Research on Load Balancing Strategy for Server Cluster [J]. Computer and Modernization, 2013, 1(1): 29-32.
[14]	CHU Guo-juan;MA Chun-li;NING Bi-feng. Hybrid Particle Swarm Optimization Algorithm Based on Differential and Simulated Annealing [J]. Computer and Modernization, 2010, 1(5): 19-20,2.
[15]	YU Wen-li;FU Jian-zhong. Simulated Annealing Genetic Algorithm of Solving Problem from Surface Distance [J]. Computer and Modernization, 2010, 1(4): 0-14.