Skip to main content
SpringerLink
Log in

Ensemble of Feature Chains for Anomaly Detection

  • Conference paper
Multiple Classifier Systems (MCS 2013)

Part of the book series: Lecture Notes in Computer Science ((LNIP,volume 7872))

Included in the following conference series:

Abstract

Along with recent technological advances more and more new threats and advanced cyber-attacks appear unexpectedly. Developing methods which allow for identification and defense against such unknown threats is of great importance. In this paper we propose new ensemble method (which improves over the known cross-feature analysis, CFA, technique) allowing solving anomaly detection problem in semi-supervised settings using well established supervised learning algorithms. Theoretical correctness of the proposed method is demonstrated. Empirical evaluation results on Android malware datasets demonstrate effectiveness of the proposed approach and its superiority against the original CFA detection method.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Chandola, V., Banerjee, A., Kumar, V.: Anomaly detection: A survey. ACM Comput. Surv. 41(3), 1–58 (2009)

    Article  Google Scholar 

  2. Huang, Y.A., Fan, W., Lee, W., Yu, P.S.: Cross-feature analysis for detecting ad-hoc routing anomalies. In: IEEE 23rd Int. Conf. on Distributed Computing Systems, pp. 478–487 (2003)

    Google Scholar 

  3. Read, J., Pfahringer, B., Holmes, G., Frank, E.: Classifier Chains for Multi-label Classification. In: Buntine, W., Grobelnik, M., Mladenić, D., Shawe-Taylor, J. (eds.) ECML PKDD 2009, Part II. LNCS, vol. 5782, pp. 254–269. Springer, Heidelberg (2009)

    Chapter  Google Scholar 

  4. Symantec blog: http://www.symantec.com/connect/blogs/androiddropdialer-identified-google-play

  5. Google mobile blog, android and security: http://googlemobile.blogspot.co.il/2012/02/android-and-security.html

  6. Noto, K., Brodley, C., Slonim, D.: Anomaly detection using an ensemble of feature models. In: Proc. of the 10th IEEE International Conf. on Data Mining, pp. 953–958 (2010)

    Google Scholar 

  7. Ye, N., Xu, M., Emran, S.M.: Probabilistic networks with undirected links for anomaly detection. In: Proceedings of the IEEE Systems, Man, and Cybernetics Information Assurance and Security Workshop, West Point, NY, pp. 175–179 (2000)

    Google Scholar 

  8. Rokach, L., Maimon, O.: Ensemble Methods for Classifiers. In: Data Mining and Knowledge Discovery Handbook. Springer US (2005)

    Google Scholar 

  9. Weka 3: Data Mining Software in Java, http://www.cs.waikato.ac.nz/ml/weka/

  10. Rodriguez, J.J., Kuncheva, L.I., Alonso, C.J.: Rotation Forest: A New Classifier Ensemble Method. IEEE Transactions on Pattern Analysis and Machine Intelligence 28(10), 1619–1630 (2006)

    Article  Google Scholar 

  11. Demsar, J.: Statistical comparisons of classifiers over multiple data sets. Journal of Machine Learning Research 7, 1–30 (2006)

    MathSciNet  MATH  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Information Systems Eng. and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Israel

    Lena Tenenboim-Chekina, Lior Rokach & Bracha Shapira

Authors
  1. Lena Tenenboim-Chekina
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Lior Rokach
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Bracha Shapira
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. National Key Laboratory for Novel Software Technology, Nanjing University, 210046, Nanjing, China

    Zhi-Hua Zhou

  2. Dept. of Electrical and Electronic Engineering, University of Cagliari, Piazza d’Armi, 09123, Cagliari, Italy

    Fabio Roli

  3. Centre for Vision, Speech and Signal Processing (CVSSP), University of Surrey, UK

    Josef Kittler

Rights and permissions

Reprints and permissions

Copyright information

© 2013 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Tenenboim-Chekina, L., Rokach, L., Shapira, B. (2013). Ensemble of Feature Chains for Anomaly Detection. In: Zhou, ZH., Roli, F., Kittler, J. (eds) Multiple Classifier Systems. MCS 2013. Lecture Notes in Computer Science, vol 7872. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-38067-9_26

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-38067-9_26

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-38066-2

  • Online ISBN: 978-3-642-38067-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation