Home > Archive > 2014 > Volume 4 Number 3 (June 2014) >
IJMLC 2014 Vol.4(3): 292-299 ISSN: 2010-3700
DOI: 10.7763/IJMLC.2014.V4.427

Performance of Interval-Based Features in Anomaly Detection by Using Machine Learning Approach

Kriangkrai Limthong

Abstract—Detecting various anomalies or unusual incidents in computer network traffic is one of the great challenges for both researchers and network administrators. If they had an efficient method that could detect network traffic anomalies quickly and accurately, they would be able to prevent security problems or network congestion caused by such anomalies. Therefore, we conducted a series of experiments to examine which and how interval-based network traffic features affect anomaly detection by using three famous machine learning algorithms: the naïve Bayes, k-nearest neighbor, and support vector machine. Our findings would help researchers and network administrators to select effective interval-based features for each particular type of anomaly, and to choose a proper machine learning algorithm for their own network system.

Index Terms—Network traffic, anomaly detection, naïve Bayes, nearest neighbor, support vector machine.

Kriangkrai Limthong is with the Department of Informatics, Graduate University of Advanced Studies (Sokendai), Japan (e-mail: kriangkrai.l@bu.ac.th).

[PDF]

Cite: Kriangkrai Limthong, "Performance of Interval-Based Features in Anomaly Detection by Using Machine Learning Approach," International Journal of Machine Learning and Computing vol.4, no. 3, pp. 292-299, 2014.

General Information

  • ISSN: 2010-3700 (Online)
  • Abbreviated Title: Int. J. Mach. Learn. Comput.
  • Frequency: Bimonthly
  • DOI: 10.18178/IJMLC
  • Editor-in-Chief: Dr. Lin Huang
  • Executive Editor:  Ms. Cherry L. Chen
  • Abstracing/Indexing: Inspec (IET), Google Scholar, Crossref, ProQuest, Electronic Journals Library.
  • E-mail: ijmlc@ejournal.net


Article Metrics