Abstract
The intent of this paper is to develop a nonparametric classification method using copulas to estimate the conditional probability for an element to be a member of a connected class while taking into account the dependence of the attributes of this element. This technique is suitable for different types of data, even those whose probability distribution is not Gaussian. To improve the effectiveness of the method, we apply it to a problem of network intrusion detection where prior classes are topologically connected.
Funded in part by DGRSDT, Algiers (PNR : Data mining and applications)
Chapter PDF
Similar content being viewed by others
References
Agarwal, R., Joshi, M.V.: PNrule: A New Framework for Learning Classifier Models in Data Mining. In: Proceedings of the First SIAM International Conference on Data Mining, Chicago, IL, USA, April 5-7 (2001)
Chao, M., Xin, S.Z., Min, L.S.: Neural network ensembles based on copula methods and Distributed Multiobjective Central Force Optimization algorithm. Engineering Applications of Artificial Intelligence 32, 203–212 (2014)
Chen, S.X., Huang, T.-M.: Nonparametric estimation of copula functions for dependence modelling. The Canadian Journal of Statistics 35(2) (2007)
Burbeck, K., Nadjm-Tehrani, S.: ADWICE – anomaly detection with real-time incremental clustering. In: Park, C.-S., Chee, S. (eds.) ICISC 2004. LNCS, vol. 3506, pp. 407–424. Springer, Heidelberg (2005)
DARPA Intrusion Detection Data set, http://www.ll.mit.edu/mission/communications/ist/corpora/ideval/data/index.html
Deheuvels, P.: La fonction de dépendance empirique et ses propriétés. Un test non paramétrique díndépendance. Bulletin de la classe des sciences. Acadimie Royale de Belgique 65, 274–292 (1979)
Dayu, Y., Qi, H.: A Network Intrusion Detection Method using Independent Component Analysis. In: International Conference on Pattern Recognition (ICPR), Tampa, FL, pp. 8–11 (2008)
DiNardo, J., Tobias, J.L.: Nonparametric Density and Regression Estimation. Journal of Economic Perspectives 15(4), 11–28 (2001)
Eid, H.F., Darwish, A., Hassanien, A.E., Ajith, A.: Principle Components Analysis and Support Vector Machine based Intrusion Detection System. In: 10th International Conference on Intelligent Systems Design and Applications (2010)
Faraoun, K.M., Boukelif, A.: Securing network trafic using geneticaly evolved transformations. Malaysian Journal of Computer Science 19(1) (2006)
Farid, D.M., Harbi, N., Rahma, Z.M.: Combining naive bayes and decision tree for adaptive intrusion detection. International Journal of Network Security & Its Applications (IJNSA) 2(2) (2010)
Kohonen, T.: Self-Organizing Maps, 3rd edn. Springer (2000)
Nguyen, H.A., Choi, D.: Application of Data Mining to Network Intrusion Detection: Classifier Selection Model. In: Ma, Y., Choi, D., Ata, S. (eds.) APNOMS 2008. LNCS, vol. 5297, pp. 399–408. Springer, Heidelberg (2008)
Khan, L., Awad, M., Thuraisingham, B.: A new intrusion detection system using support vector machines and hierarchical clustering. The International Journal on Very Large Data Bases 16(4), 507–521 (2007)
Levin, I.: KDD-99 Classifier Learning Contest LLSoft’s Results Overview. ACM SIGKDD Explorations Newsletter 1(2), 67–75 (2000)
Maheshkumar, S., Gursel, S.: Application of Machine Learning Algorithms to KDD Intrusion Detection Dataset within Misuse Detection Context. In: Proceedings of the International Conference on Machine Learning, Models, Technologies and Applications, Las Vegas (MLMTA 2003), vol. 1, pp. 209–215 (2003)
Marshall, A.: Copulas, marginals and joint distributions. In: Rüschendorff, L., Schweizer, B., Taylor, M. (eds.) Distributions with Fixed Marginals and Related Topics, pp. 213–222. Institute of Mathematical Statistics, Hayward (1996)
Mayor, G., Suñer, J., Torrens, J.: Sklar’s theorem in finite settings. IEEE Transactions on Fuzzy Systems 15(3), 410–416 (2007)
Michie, D., Spiegelhalter, D.J., Tayler, C.C.: Machine Learning, Neural and Statistical Classification. Ellis Horwood Series in Artificial Intelligence. Prentice Hall, Upper Saddle River (1994)
Müller, K.R., Mika, S., Rätsch, G., Tsuda, K., Schölkopf, B.: An Introduction to Kernel-Based Learning Algorithms. IEEE Transactions on Neural Networks 12, 181–201 (2001)
Nelsen, R.: An Introduction to Copulas, 2nd edn. Springer, New York (2006)
Pfahringer, B.: Winning the KDD99 classification cup: bagged boosting. ACM SIGKDD Explorations Newsletter 1(2), 65-66 (2000)
Quintela-del-Río, A., Estévez-Pérez, G.: Nonparametric Kernel Distribution Function Estimator with kerdiest: An R Package for Bandwidth Choice and Applications. Journal of Statistical Software 50(8) (2012)
The Comprehensive R Archive Network, http://cran.r-project.org/
Rossiter, D.G.: Tutorial: Using the R Environment for Statistical Computing: An example with the Mercer & Hall wheat yield dataset. University of Twente, Faculty of Geo-Information Science & Earth Observation (ITC) Enschede, NL (2014)
Santosh, K., Sumit, K., Sukumar, N.: Multidensity Clustering Algorithm for Anomaly Detection Using KDD’99 Dataset. Advances in Computing and Communications 190(pt.8), 619–630 (2011)
Singh, S., Silakari, S.: Generalized Discriminant Analysis algorithm for feature reduction in Cyber Attack Detection System. International Journal of Computer Science and Information Security 6(1) (2009)
Sklar, A.: Fonction de répartition á n dimensions et leurs marges. Publ. Inst. Statist. Univ. Paris 8, 229–231 (1959)
snow: Simple Network of Workstations, http://cran.r-project.org/web/packages/snow/index.html
snowfall: Easier cluster computing (based on snow), http://cran.r-project.org/web/packages/snowfall/index.html
Silverman, B.W.: Density Estimation for Statistics and Data Analysis. Monographs on Statistics and Applied Probability. Chapman and Hall, London (1986)
Terrell, D.G., Scott, D.W.: Variable kernel density estimation. Annals of Statistics 20(3), 1236–1265 (1992)
Toosi, A.N., Kahani, M.: A new approach to intrusion detection based on an evolutionary soft computing model using neuro-fuzzy classifiers. Computer Communications 30, 2201–2212 (2007)
Yeung, D.Y., Chow, C.: Parzen-window Network Intrusion Detectors. In: 16th International Conference on Pattern Recognition, Quebec, Canada, pp. 11–15 (2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 IFIP International Federation for Information Processing
About this paper
Cite this paper
Khobzaoui, A., Mesfioui, M., Yousfate, A., Amar Bensaber, B. (2015). On Copulas-Based Classification Method for Intrusion Detection. In: Amine, A., Bellatreche, L., Elberrichi, Z., Neuhold, E., Wrembel, R. (eds) Computer Science and Its Applications. CIIA 2015. IFIP Advances in Information and Communication Technology, vol 456. Springer, Cham. https://doi.org/10.1007/978-3-319-19578-0_32
Download citation
DOI: https://doi.org/10.1007/978-3-319-19578-0_32
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-19577-3
Online ISBN: 978-3-319-19578-0
eBook Packages: Computer ScienceComputer Science (R0)