Robust PCA for Anomaly Detection in Cyber Networks

  title={Robust PCA for Anomaly Detection in Cyber Networks},
  author={Randy Paffenroth and Kathleen M Kay and Leslie D. Servi},
This paper uses network packet capture data to demonstrate how Robust Principal Component Analysis (RPCA) can be used in a new way to detect anomalies which serve as cyber-network attack indicators. The approach requires only a few parameters to be learned using partitioned training data and shows promise of ameliorating the need for an exhaustive set of examples of different types of network attacks. For Lincoln Labs DARPA intrusion detection data set, the method achieves low false-positive… CONTINUE READING
Related Discussions
This paper has been referenced on Twitter 5 times. VIEW TWEETS


Publications referenced by this paper.
Showing 1-10 of 30 references

Dynamic Anomalography: Tracking Network Anomalies Via Sparsity and Low Rank

IEEE Journal of Selected Topics in Signal Processing • 2013
View 4 Excerpts
Highly Influenced

On covariance structure in noisy, big data

RC Paffenroth, R Nong, P Du Toit
SPIE Optical Engineering+ Applications, pages 88570E–88570E, • 2013
View 4 Excerpts
Highly Influenced

Distributed pattern detection in cyber networks

RC Paffenroth, PC Du Toit, +3 authors Ryan Nong
In Cyber Sensing, • 2012
View 5 Excerpts
Highly Influenced

Matrix Completion With Noise

Proceedings of the IEEE • 2010
View 4 Excerpts
Highly Influenced

The Elements of Statistical LearningData Mining, Inference, and Prediction, Second Edition

Jerome Hastie, Trevor, Tibshirani, Robert, Friedman
View 4 Excerpts
Highly Influenced

Unsupervised Anomaly Detection in Network Traffic by Means of Robust PCA

2007 International Multi-Conference on Computing in the Global Information Technology (ICCGI'07) • 2007
View 4 Excerpts
Highly Influenced

Leveraging Sparsity and Low Rank for Large-Scale Networks and Data Science

PhD thesis, • 2015

Similar Papers

Loading similar papers…