Anomaly Detection using Clustering (K-Means with DBSCAN) and SMO

Authors

  • Umair Rashid Department of Computer Science, Bahauddin Zakariya University, Multan, 60000, Pakistan.
  • Muhammad Faheem Saleem Department of Computer Science, Bahauddin Zakariya University, Multan, 60000, Pakistan.
  • Saad Rasool Department of Computer Science, Bahauddin Zakariya University, Multan, 60000, Pakistan.
  • Ahmad Abdullah Department of Computer Science, Bahauddin Zakariya University, Multan, 60000, Pakistan.
  • Hira Mustafa Department of Computer Science, Bahauddin Zakariya University, Multan, 60000, Pakistan.
  • Aiman Iqbal Department of Computer Science, Bahauddin Zakariya University, Multan, 60000, Pakistan.

Keywords:

Network Security, Anomalies Detection, Sequential Minimal Optimization, Data Mining, Hybrid Model, Density-Based Clustering Algorithm

Abstract

In recent times, AI has become a useful tool for describing the properties of information because it can support the Data Mining (DM) procedure by analysing data for identifying patterns or routines. Anomaly detection is of vital importance in DM that helps in the discovery of hidden behaviour within the most vulnerable data. It also aids in the detection of network intrusion. This research proposed a model for detecting anomalies using machine learning (ML) techniques. By leveraging ML, the model can achieve higher detection rates and reduce the number of false positives, resulting in an overall improvement in intrusion classification. This study evaluated a proposed hybrid ML technology using dataset of Network Security Knowledge and Data Discovery. In this study, we used K-means and Density-Based Clustering Algorithm for clustering and Sequential Minimal Optimization for classification purposes. By putting the suggested method for detecting anomalies to test, it is demonstrated by the findings that this hybrid model can increase positive detection rate and anomaly detection accuracy while decreasing rate of false-positives. The proposed algorithm showed superior performance compared with recent closely related studies using similar variables and environments. This algorithm achieved lower false alarm probability (FAP) and high accuracy. This is due to the hybrid nature of producing an optimal detectors quantity that exhibit high accuracy and low FAP. The required time will decrease if the given false alarm probability is small for pre-processing and processing when compared to other algorithms.

Downloads

Published

2024-09-01

How to Cite

Umair Rashid, Muhammad Faheem Saleem, Saad Rasool, Ahmad Abdullah, Hira Mustafa, & Aiman Iqbal. (2024). Anomaly Detection using Clustering (K-Means with DBSCAN) and SMO. Journal of Computing & Biomedical Informatics, 7(02). Retrieved from https://jcbi.org/index.php/Main/article/view/598