Abnormal detection system based on outlier excavation

An anomaly detection and outlier technology, applied in the detection field of mobile Ad Hoc networks, can solve the problems of low dimensionality, high false alarm rate, weak attack ability, etc., and achieve the effect of improving system detection performance and reducing false alarm rate

Inactive Publication Date: 2013-05-15
WUXI NANLIGONG TECH DEV
View PDF0 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The purpose of the present invention is to propose an anomaly detection system based on outlier mining in view of the problems that the existing anomaly detection system is only applicable to data sets with low dimensions, poor real-time performance, high false alarm rate and weak ability to detect new types of attacks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Abnormal detection system based on outlier excavation
  • Abnormal detection system based on outlier excavation
  • Abnormal detection system based on outlier excavation

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0018] The present invention will be further described below in conjunction with the accompanying drawings and embodiments.

[0019] like figure 1 Shown, a kind of anomaly detection system based on outlier mining, it includes data collector, storage database, feature selection module, data mining module, normal activity profile database and classifier, described data collector as anomaly detection system The signal input end of the data collector collects network data, the output end of the data collector is connected to the signal input end of the storage database, and the two signal output ends of the storage database are respectively connected to the corresponding signal input end of the feature selection module and the data mining module, and the other end of the data mining module The signal input terminal is connected to the normal activity profile database, and the signal output terminals of the feature selection module and the data mining module are respectively connec...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

An abnormal detection system based on outlier excavation comprises a data acquisition unit, a storage data base, a feature selection module, a data excavation module, a normal activity profile data base and a classifier. The data acquisition unit is used for acquiring network data. An output end of the data acquisition unit is connected with a signal input end of the storage data base. Two signal output ends of the storage data base are respectively connected with a corresponding signal input end of the feature selection module and a corresponding signal input end of the data excavation module. The other signal input end of the data excavation module is connected with the normal activity profile data base. Signal output ends of the feature selection module and the data excavation module are respectively connected with corresponding signal input ends of the classifier. A signal output end of the classifier is used for outputting of the abnormal detection system based on the outlier excavation and a detection state is displayed. According to the system, network data, namely, a high-dimensional, sparse and nonlinear dataset composed of a large amount of system logs and audit records is processed, false alarm rate is reduced and system detection performance is improved.

Description

Technical field [0001] The invention involves the field of detection in the mobile AD HOC network, especially the detection system of abnormal intrusion of the network. Specifically, it is an abnormal detection system based on group excavation. [0002] Background technique [0003] At present, the method and theoretical research work of intrusion testing has a history of more than 30 years.However, the research of the mobile (point -to -point) mode AD HOC network invasion detection system is still in a very primary stage: most of the commercial products use a hard -coding mechanism similar to anti -virus software in the implementation method, which is obviously not suitable for rapid changes in network attack behavior; Although the laboratory studies have proposed various new methods to detect new types of attack behavior, there is still a considerable distance from practicality.The most prominent common problem of the current research institutions and the industrial mobile AD H...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/26G06F17/30
Inventor 李千目戚湧许雪松李嘉侯君张宏
Owner WUXI NANLIGONG TECH DEV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap