通信学报

• 网络安全 • 上一篇    下一篇

面向MANET异常检测的分布式遗传k-means研究

李洪成,吴晓平,严 博   

  1. 海军工程大学 信息安全系,湖北 武汉 430033
  • 出版日期:2015-11-27 发布日期:2015-11-27
  • 基金资助:
    国家自然科学基金资助项目(61100042);中国博士后基金资助项目(2014M552656);湖北省自然科学基金资助项目(2015CFC867)

Research on distributed genetic k-means for anomaly detection in MANET

  • Online:2015-11-27 Published:2015-11-27

摘要: 针对移动自组网(MANET,mobile ad hoc networks)入侵检测过程中的攻击类型多样性和监测数据海量性问题,提出了一种基于改进k-means算法的MANET异常检测方法。通过引入划分贡献度的概念,可合理地计算各维特征在检测中占有的权重,并将遗传算法与快速聚类检测算法k-means相结合,解决了聚类检测结果容易陷入局部最优的问题,进而,提出了以上检测算法在MapReduce框架下的设计方案,利用种群迁移策略在分布式处理器上实现了并行聚类检测。实验结果证明了该方法的检测准确率和运行效率均优于传统聚类检测方法。

关键词: 移动自组网;异常入侵检测;k-means聚类;MapReduce;遗传算法;划分贡献度

Abstract: Aiming at the diversity and the large amount of monitoring data of MANET (mobile ad hoc networks), an anomaly detection method in MANET based on improved k-means algorithm was proposed. By introducing the classification the contribution degree, the weight of each dimension can be calculated reasonably, and genetic algorithm and k-means were combined to prevent the results of clustering from getting in local optimization. Then, the detection method under the framework of MapReduce was put forward, and parallel clustering was achieved by using population migration strategy . The experimental results show that the detection accuracy and efficiency of the proposed method are better than the traditional ones.

Key words: mobile ad-hoc networks; anomaly intrusion detection; k-means clustering; MapReduce; genetic algorithm; classification contribution degree

[1] 刘伯涛. 移动回传的融合之路[J]. 电信科学, 2009, 25(11): 91 -93 .
[2] 鲜永菊,董灿,张祖凡,吴东伟. LTE-A载波聚合下的载波切换分析[J]. 电信科学, 2009, 25(12): 46 -50 .
[3] 王俊波,陈 明. 单业务TDD-CDMA系统上行用户容量分析[J]. 通信学报, 2007, 28(6): 8 -53 .
[4] 张 静,胡华平,刘 波,肖枫涛. 基于ASPQ的LDoS攻击检测方法[J]. 通信学报, 2012, 33(5): 10 -84 .
[5] 彭俊宇,蔡孙增,朱正航,徐景,周婷. 基于MIMO-OFDM的高频段Gbit/s通信系统设计和实现[J]. 电信科学, 2014, 30(6): 95 -101 .
[6] 杨春刚,盛敏,董延杰,李建东,李红艳,刘勤. 认知网络中基于网络辅助的速率控制方法[J]. 通信学报, 2013, 34(5): 15 -135 .
[7] 刘月平,姜秋喜,毕大平,崔 瑞. 网络雷达对Rician目标检测性能分析[J]. 通信学报, 2011, 32(10): 3 -26 .
[8] 淦明,李辉,戴旭初. 基于协作中继的多元网络乘积码[J]. 通信学报, 2013, 34(6): 13 -113 .
[9] 王庆顺. UT斯达康奔流融合视讯平台——全业务运营商的选择[J]. 电信科学, 2010, 26(11): 146 -150 .
[10] 张士兵,张力军,徐晨. 多带OFDM-UWB系统的抗干扰研究[J]. 通信学报, 2006, 27(5): 13 -83 .