Volume 13 Number 3 (Mar. 2018)
Home > Archive > 2018 > Volume 13 Number 3 (Mar. 2018) >
JSW 2018 Vol.13(3): 192-200 ISSN: 1796-217X
doi: 10.17706/jsw.13.3.192-200

Research on Application of Improved K-means Algorithm in Network Intrusion Detection

Fengling Wang*
Hezhou University, School of Mathematics and Computer Hezhou Guangxi 542899, China

Abstract—In order to solve the problem of network intrusion detection, traditional k-means algorithm in the process of network intrusion detection application, there are some shortcomings, such as sensitivity to the initial value of clustering center, easy to fall into local optimal value, pre-set number of clusters k value, easy to be affected by noise and isolated points, not suitable for the discovery of non-spherical clusters or clusters of large size difference, etc. so that the network intrusion detection accuracy rate is low, high false detection rate. Aiming at the influence of isolated points on the clustering center of k-means algorithm, this paper firstly optimizes the data set itself, removes isolated points, and makes the data set as spherical as possible. For the selection of the initial clustering location, the maximum similarity distance within the class and the minimum similarity distance between classes are used to dynamically generate new classes, and then the data sets are merged into several classes according to the point density, and the unreasonable clusters are split by combining the minimum support tree clustering algorithm, so that the performance of the intrusion detection system is effectively improved. simulation results show that the improved k-means clustering algorithm is used in the network intrusion detection system to improve the detection rate of anomaly detection, reduce the false detection rate, and provide an effective reference for network detection optimization.

Index Terms—Intrusion detection; clustering analysis; k-means algorithm; minimum support tree.

[PDF]

Cite: Fengling Wang, "Research on Application of Improved K-means Algorithm in Network Intrusion Detection," Journal of Software vol. 13, no. 3, pp. 192-200, 2018.

General Information

ISSN: 1796-217X
Frequency: Monthly
Editor-in-Chief: Prof. Antanas Verikas
Executive Editor: Ms. Yoyo Y. Zhou
Abstracting/ Indexing: DBLP, EBSCO, ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat, CNKI,etc
E-mail: jsw@iap.org
  • May 11, 2018 News!

    Papers published in JSW Vol. 13, No. 1- Vol. 13 No. 3 have been indexed by DBLP.    [Click]

  • Dec 22, 2017 News!

    [CFP] 2018 the annual meeting of JSW Editorial Board, ICCSM 2018, will be held in Nice, France, July 17-19.   [Click]

  • Dec 22, 2017 News!

    Vol.12, No.6 has been indexed by EI (Inspec).    [Click]

  • Mar 30, 2018 News!

    Vol 13, No. 3 has been published with online version 6 original aritcles from 4 countries are published in this issue.      [Click]

  • Apr 30, 2018 News!

    Vol 13, No. 4 has been published with online version 5 original aritcles from 4 countries are published in this issue.      [Click]