articleMay 1, 2003Closed access
A Comparative Study of Anomaly Detection Schemes in Network Intrusion Detection
Indexed incrossref
Abstract
Intrusion detection corresponds to a suite of techniques that are used to identify attacks against computers and network infrastructures. Anomaly detection is a key element of intrusion detection in which perturbations of normal behavior suggest the presence of intentionally or unintentionally induced attacks, faults, defects, etc. This paper focuses on a detailed comparative study of several anomaly detection schemes for identifying different network intrusions. Several existing supervised and unsupervised anomaly detection schemes and their variations are evaluated on the DARPA 1998 data set of network connections [9] as well as on real network data using existing standard evaluation techniques as well as…
Citation impact
860
total citations
- FWCI
- 25.08
- Percentile
- 100%
- References
- 32
Citations per year
Authors
5Topics & keywords
Topics
Keywords
- Library science
- Political science
- Computer science
No related works found for this paper.