A Malicious Traffic Detection Method Using X-means Clustering 


Vol. 41,  No. 9, pp. 617-624, Sep.  2014


PDF

  Abstract

Malicious traffic, such as DDoS attack and botnet communications, refers to traffic that is generated for the purpose of disturbing internet networks or harming certain networks, servers, or hosts. As malicious traffic has been constantly evolving in terms of both quality and quantity, there have been many researches fighting against it. In this paper, we propose an effective malicious traffic detection method that exploits the X-means clustering algorithm. We also suggest how to analyze statistical characteristics of malicious traffic and to define metrics that are used when clustering. Finally, we verify effectiveness of our method by experiments with two released traffic data.


  Statistics
Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.


  Cite this article

[IEEE Style]

M. Han, J. Lim, J. Choi, H. Kim, J. Seo, C. Yu, S. Kim, K. Park, "A Malicious Traffic Detection Method Using X-means Clustering," Journal of KIISE, JOK, vol. 41, no. 9, pp. 617-624, 2014. DOI: .


[ACM Style]

Myoungji Han, Jihyuk Lim, Junyong Choi, Hyunjoon Kim, Jungjoo Seo, Cheol Yu, Sung-Ryul Kim, and Kunsoo Park. 2014. A Malicious Traffic Detection Method Using X-means Clustering. Journal of KIISE, JOK, 41, 9, (2014), 617-624. DOI: .


[KCI Style]

한명지, 임지혁, 최준용, 김현준, 서정주, 유철, 김성렬, 박근수, "X-means 클러스터링을 이용한 악성 트래픽 탐지 방법," 한국정보과학회 논문지, 제41권, 제9호, 617~624쪽, 2014. DOI: .


[Endnote/Zotero/Mendeley (RIS)]  Download


[BibTeX]  Download



Search




Journal of KIISE

  • ISSN : 2383-630X(Print)
  • ISSN : 2383-6296(Electronic)
  • KCI Accredited Journal

Editorial Office

  • Tel. +82-2-588-9240
  • Fax. +82-2-521-1352
  • E-mail. chwoo@kiise.or.kr