ONE-CLASS FUSION-BASED LEARNING MODEL FOR ANOMALY DETECTION
نویسندگان
چکیده
The Dempster-Shafer (DS) theory of evidence is frequently used to combine multipe supervised machine learning models into a robust fusion-based model. However, using the DS create fusion model from multiple one-class classifications (OCCs) for network anomaly detection challenging task. First, lack attack data leads difficulty in estimating an appropriate threshold OCC distinguish between normal and abnormal samples. Second, it also very find weight OCCs that corresponds contribution each In this paper, we attempt solve above issues order make applicable constructing OCC-based models. Specifically, propose two novel methods automatically choosing individual Thanks that, develop One-class Fusion-based Anomaly Detection (OFuseAD) single OCCs. proposed evaluated on ten well-known problems. experimental results show performance OFuseAD improved almost all tested datasets metrics: accuray F1-score. visualization provides insight characteristics OFuseAD.
منابع مشابه
Anomaly Detection using One-Class Neural Networks
We propose a one-class neural network (OC-NN) model to detect anomalies in complex data sets. OC-NN combines the ability of deep networks to extract progressively rich representation of data with the one-class objective of creating a tight envelope around normal data. The OC-NN approach breaks new ground for the following crucial reason: data representation in the hidden layer is driven by the ...
متن کاملOne-Class Conditional Random Fields for Sequential Anomaly Detection
Sequential anomaly detection is a challenging problem due to the one-class nature of the data (i.e., data is collected from only one class) and the temporal dependence in sequential data. We present One-Class Conditional Random Fields (OCCRF) for sequential anomaly detection that learn from a one-class dataset and capture the temporal dependence structure, in an unsupervised fashion. We propose...
متن کاملOne-Class Support Measure Machines for Group Anomaly Detection
We propose one-class support measure machines (OCSMMs) for group anomaly detection. Unlike traditional anomaly detection, OCSMMs aim at recognizing anomalous aggregate behaviors of data points. The OCSMMs generalize well-known one-class support vector machines (OCSVMs) to a space of probability measures. By formulating the problem as quantile estimation on distributions, we can establish intere...
متن کاملMachine Learning for Host-based Anomaly Detection
Machine Learning for Host-based Anomaly Detection by Gaurav Tandon Dissertation Advisor: Philip K. Chan, Ph.D. Anomaly detection techniques complement signature based methods for intrusion detection. Machine learning approaches are applied to anomaly detection for automated learning and detection. Traditional host-based anomaly detectors model system call sequences to detect novel attacks. This...
متن کاملAssessment Methodology for Anomaly-Based Intrusion Detection in Cloud Computing
Cloud computing has become an attractive target for attackers as the mainstream technologies in the cloud, such as the virtualization and multitenancy, permit multiple users to utilize the same physical resource, thereby posing the so-called problem of internal facing security. Moreover, the traditional network-based intrusion detection systems (IDSs) are ineffective to be deployed in the cloud...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Journal of Computer Science and Cybernetics
سال: 2023
ISSN: ['1813-9663']
DOI: https://doi.org/10.15625/1813-9663/16675