Open AccessA Survey of Outlier Detection Methods in Network Anomaly Identification
Author(s) -
P. K. Gogoi,
Dhruba K. Bhattacharyya,
Bhogeswar Borah,
Jugal Kalita
Publication year - 2011
Publication title -
the computer journal
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.319
H-Index - 64
eISSN - 1460-2067
pISSN - 0010-4620
DOI - 10.1093/comjnl/bxr026
Subject(s) - anomaly detection , outlier , computer science , identification (biology) , context (archaeology) , data mining , artificial intelligence , anomaly (physics) , key (lock) , pattern recognition (psychology) , machine learning , geography , computer security , botany , physics , archaeology , condensed matter physics , biology
The detection of outliers has gained considerable interest in data mining with the realization that outliers can be the key discovery to be made from very large databases. Outliers arise due to various reasons such as mechanical faults, changes in system behavior, fraudulent behavior, human error and instrument error. Indeed, for many applications the discovery of outliers leads to more interesting and useful results than the discovery of inliers. Detection of outliers can lead to identification of system faults so that administrators can take preventive measures before they escalate. It is possible that anomaly detection may enable detection of new attacks. Outlier detection is an important anomaly detection approach. In this paper, we present a comprehensive survey of well-known distance-based, density-based and other techniques for outlier detection and compare them. We provide definitions of outliers and discuss their detection based on supervised and unsupervised learning in the context of network anomaly detection.
Accelerating Research
Robert Robinson Avenue,
Oxford Science Park, Oxford
OX4 4GP, United Kingdom
Address
John Eccles HouseRobert Robinson Avenue,
Oxford Science Park, Oxford
OX4 4GP, United Kingdom