Clustering algorithm optimization method, device and equipment for network abnormal behavior detection

A clustering algorithm and network anomaly technology, applied in the computer field, can solve problems such as the lack of accuracy of clustering algorithm, and achieve the effect of reducing the impact

Pending Publication Date: 2022-03-11
航天科工网络信息发展有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] There are currently many optimal clustering algorithms based on K-means, some of which determine the clustering k value in advance to optimize the final clustering effect, and some optimization directions reduce the impact of noise points on the clustering results, etc., but all lack systematic solutions Ability of Clustering Algorithms to Address Accuracy Issues in Network Anomaly Behavior Detection

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Clustering algorithm optimization method, device and equipment for network abnormal behavior detection
  • Clustering algorithm optimization method, device and equipment for network abnormal behavior detection
  • Clustering algorithm optimization method, device and equipment for network abnormal behavior detection

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0069] In order to make the purpose, technical solution and advantages of this specification more clear, the technical solution of this application will be clearly and completely described below in conjunction with the specific embodiments of the application and the corresponding drawings. Obviously, the described embodiments are only a part of this specification Examples, not all examples, not all examples. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts fall within the protection scope of this document.

[0070] The technical solutions provided by each embodiment of this specification will be described in detail below in conjunction with the accompanying drawings.

[0071] figure 1 For a schematic flowchart of a clustering algorithm optimization method for network abnormal behavior detection provided by an embodiment of this specification, see figure 1 , the method may spec...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a clustering algorithm optimization method, device and equipment for network abnormal behavior detection. The method comprises the following steps: selecting a preset number of data points from a data set and taking the data points as initial central data points; according to each central data point, clustering processing is carried out on other data points to obtain a corresponding number of clusters, and the data points in the data set are used for representing user behaviors; respectively determining the dispersion degree of other data points in each cluster relative to the central data point of the cluster, and taking the data point corresponding to the minimum dispersion degree as a new central data point of the cluster; and carrying out clustering processing on other data points again based on the new central data point, and determining the dispersion degree again according to the new cluster until the obtained data point with the minimum corresponding dispersion degree is the same as the current central data point, and taking the data point as the optimal central data point of the cluster. Therefore, the influence of noise on clustering can be effectively reduced.

Description

technical field [0001] This document relates to the field of computer technology, in particular to a clustering algorithm optimization method, device and equipment for network abnormal behavior detection. Background technique [0002] With the rapid development of emerging network technologies in the Internet era, big data, cloud computing, etc. The means of network attack bring huge challenges to enterprise network security. In network attack methods, compared with external network infiltration and other behaviors, attacks initiated by the enterprise network are more concealed and cause more serious harm. How to detect abnormal user behaviors in the enterprise network more accurately through algorithms can effectively Avoiding losses is an urgent problem to be solved in the current era. [0003] Clustering algorithm is a typical data mining algorithm. Because it can quickly classify a large amount of data, it can analyze whether user behavior sample data is normal behavio...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06K9/62G06N3/12
CPCG06N3/126G06F18/23213
Inventor 夏宇昕刘健雄陈真李慧琦刘金钟
Owner 航天科工网络信息发展有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap