Intrusion Detection Method Based On Improved K-Means Algorithm

• 1、Beijing University of Posts and Telecommunications, Beijing 100876

Abstract：Recent years, more and more data mining technology are applied in the field of intrusion detection s, K-Means is an efficient division algorithm in clustering. However, the existing intrusion detection system based on K-Means algorithm still has the shortage of having low detection rate and high false alarm rate. To solve this problem, this paper proposed a method for intrusion detection based on improved K-Means algorithm and FP-Growth algorithm. The Classification features of K-Means can be well combined with FP-Growth which reduce the system's false alarm rate, and at the same time ensure the detection rate of the system and the efficiency of the system. KDDCup99 dataset was used for the experiment. The experimental results show that the KMFP method can effectively reduce the false alarm rate, also the KMFP method can guarantee the detection rate and the efficiency of detection at the same time.

Keywords： intrusion detection clustering K-Means algorithm FP-Growth algorithm