scholarly journals Few-Shot Abnormal Network Traffic Detection Based on Multi-scale Deep-CapsNet and Adversarial Reconstruction

2021 ◽  
Vol 14 (1) ◽  
Author(s):  
Wengang Ma ◽  
Yadong Zhang ◽  
Jin Guo ◽  
Qian Yu
Keyword(s):  
Attitude Change ◽  
Network Traffic ◽  
Noise Interference ◽  
Training Strategy ◽  
Multi Scale ◽  
Sample Classification ◽  
Adversarial Training ◽  
Vector Clustering ◽  
High Level ◽  
Traffic Detection

AbstractDetecting various attacks and abnormal traffic in the network is extremely important to network security. Existing detection models used massive amounts of data to complete abnormal traffic detection. However, few-shot attack samples can only be intercepted in certain special scenarios. In addition, the discrimination of traffic attributes will also be affected by the change of feature attitude. But the traditional neural network model cannot detect this kind of attitude change. Therefore, the accuracy and efficiency of few-shot sample abnormal traffic detection are very low. In this paper, we proposed a few-shot abnormal network traffic detection method. It was composed of the multi-scale Deep-CapsNet and adversarial reconstruction. First, we designed an improved EM vector clustering of the Deep-CapsNet. The attitude transformation matrix was used to complete the prediction from low-level to high-level features. Second, a multi-scale convolutional capsule was designed to optimize the Deep-CapsNet. Third, an adversarial reconstruction classification network (ARCN) was proposed. The supervised source data classification and the unsupervised target data reconstruction were achieved. Moreover, we proposed an adversarial training strategy, which alleviated the noise interference during reconstruction. Fourth, the few-shot sample classification were obtained by combining multi-scale Deep-CapsNet and adversarial reconstruction. The ICSX2012 and CICIDS2017 datasets were used to verify the performance. The experimental results show that our method has better training performance. Moreover, it has the highest accuracy in two-classification and multi-classification. Especially it has good anti-noise performance and short running time, which can be used for real-time few-shot abnormal network traffic detection.

Semantic Relation Model and Dataset for Remote Sensing Scene Understanding

2021 ◽  
Vol 10 (7) ◽  
pp. 488
Author(s):  
Peng Li ◽  
Dezheng Zhang ◽  
Aziguli Wulamu ◽  
Xin Liu ◽  
Peng Chen
Keyword(s):  
Remote Sensing ◽  
Scene Understanding ◽  
Deep Understanding ◽  
Remote Sensing Images ◽  
Convolutional Network ◽  
Scene Graph ◽  
Multi Scale ◽  
Relationship Extraction ◽  
High Level ◽  
Graph Generation

A deep understanding of our visual world is more than an isolated perception on a series of objects, and the relationships between them also contain rich semantic information. Especially for those satellite remote sensing images, the span is so large that the various objects are always of different sizes and complex spatial compositions. Therefore, the recognition of semantic relations is conducive to strengthen the understanding of remote sensing scenes. In this paper, we propose a novel multi-scale semantic fusion network (MSFN). In this framework, dilated convolution is introduced into a graph convolutional network (GCN) based on an attentional mechanism to fuse and refine multi-scale semantic context, which is crucial to strengthen the cognitive ability of our model Besides, based on the mapping between visual features and semantic embeddings, we design a sparse relationship extraction module to remove meaningless connections among entities and improve the efficiency of scene graph generation. Meanwhile, to further promote the research of scene understanding in remote sensing field, this paper also proposes a remote sensing scene graph dataset (RSSGD). We carry out extensive experiments and the results show that our model significantly outperforms previous methods on scene graph generation. In addition, RSSGD effectively bridges the huge semantic gap between low-level perception and high-level cognition of remote sensing images.

scholarly journals Study on Fault Diagnosis Method of Planetary Gearbox Based on Turn Domain Resampling and Variable Multi-Scale Morphological Filtering

Symmetry ◽  
2020 ◽  
Vol 13 (1) ◽  
pp. 52
Author(s):  
Tongtong Liu ◽  
Lingli Cui ◽  
Chao Zhang
Keyword(s):  
Frequency Conversion ◽  
Interpolation Method ◽  
Spline Interpolation ◽  
Operating Efficiency ◽  
Planetary Gearbox ◽  
Noise Interference ◽  
Multi Scale ◽  
Morphological Filtering ◽  
Diagnosis Method ◽  
Simulation Signal

The turn domain resampling (TDR) method is proposed in the paper on the basis of the existing angle domain resampling for solving the problem of non-fixed fault frequency under variable working conditions. TDR can select the appropriate sampling order according to the influence of frequency conversion, which avoided the error caused by the spline interpolation method. It can provide accurate parameters for the subsequent calculation of the equivalent frequency order. Variable multi-scale morphological filtering (VMSMF) method is proposed for the purpose of further reducing the interference of noise in resampling signal to feature extraction. VMSMF adaptively selects structural elements according to the parameter change of impact signal to make its scale more targeted. It only needs to calculate once using the optimal structural unit for a particular impact, and the filtering accuracy and operating efficiency have been greatly improved. The main steps of this article are as follows. First, the TDR is used to resample the original signal as to get the resampling signal which is still submerged by the strong noise. In the second step, VMSMF is used to filter the resampling signal to obtain the signal with less noise interference. Finally, the fault characteristics of the filtering signal was extracted and compared with the possible fault frequency calculated by the sampling parameters provided by resampling, so as to determine the fault type of the planetary gearbox. By analyzing the simulation signal and the experimental signal respectively, this method can find out the corresponding fault characteristics effectively.

scholarly journals Extended Feature Pyramid Network with Adaptive Scale Training Strategy and Anchors for Object Detection in Aerial Images

2020 ◽  
Vol 12 (5) ◽  
pp. 784 ◽  
Author(s):  
Wei Guo ◽  
Weihong Li ◽  
Weiguo Gong ◽  
Jinkai Cui
Keyword(s):  
Neural Network ◽  
Object Detection ◽  
Semantic Information ◽  
Aerial Images ◽  
Training Strategy ◽  
The Public ◽  
Multi Scale ◽  
Shallow Layer ◽  
The Neural Network ◽  
Feature Pyramid

Multi-scale object detection is a basic challenge in computer vision. Although many advanced methods based on convolutional neural networks have succeeded in natural images, the progress in aerial images has been relatively slow mainly due to the considerably huge scale variations of objects and many densely distributed small objects. In this paper, considering that the semantic information of the small objects may be weakened or even disappear in the deeper layers of neural network, we propose a new detection framework called Extended Feature Pyramid Network (EFPN) for strengthening the information extraction ability of the neural network. In the EFPN, we first design the multi-branched dilated bottleneck (MBDB) module in the lateral connections to capture much more semantic information. Then, we further devise an attention pathway for better locating the objects. Finally, an augmented bottom-up pathway is conducted for making shallow layer information easier to spread and further improving performance. Moreover, we present an adaptive scale training strategy to enable the network to better recognize multi-scale objects. Meanwhile, we present a novel clustering method to achieve adaptive anchors and make the neural network better learn data features. Experiments on the public aerial datasets indicate that the presented method obtain state-of-the-art performance.

scholarly journals Application of Multi-Scale Fusion Attention U-Net to Segment the Thyroid Gland on CT Localization Images for Radiotherapy

2021 ◽  
Author(s):  
Xiaobo Wen ◽  
Biao Zhao ◽  
Meifang Yuan ◽  
Jinzhi Li ◽  
Mengzhen Sun ◽  
...  
Keyword(s):  
Thyroid Gland ◽  
Clinical Work ◽  
Similarity Coefficient ◽  
Dice Similarity Coefficient ◽  
Training Set ◽  
Data Set ◽  
Test Set ◽  
Noise Interference ◽  
Multi Scale ◽  
Validation Set

Abstract Objectives: To explore the performance of Multi-scale Fusion Attention U-net (MSFA-U-net) in thyroid gland segmentation on CT localization images for radiotherapy. Methods: CT localization images for radiotherapy of 80 patients with breast cancer or head and neck tumors were selected; label images were manually delineated by experienced radiologists. The data set was randomly divided into the training set (n=60), the validation set (n=10), and the test set (n=10). Data expansion was performed in the training set, and the performance of the MSFA-U-net model was evaluated using the evaluation indicators Dice similarity coefficient (DSC), Jaccard similarity coefficient (JSC), positive predictive value (PPV), sensitivity (SE), and Hausdorff distance (HD). Results: With the MSFA-U-net model, the DSC, JSC, PPV, SE, and HD indexes of the segmented thyroid gland in the test set were 0.8967±0.0935, 0.8219±0.1115, 0.9065±0.0940, 0.8979±0.1104, and 2.3922±0.5423, respectively. Compared with U-net, HR-net, and Attention U-net, MSFA-U-net showed that DSC increased by 0.052, 0.0376, and 0.0346 respectively; JSC increased by 0.0569, 0.0805, and 0.0433, respectively; SE increased by 0.0361, 0.1091, and 0.0831, respectively; and HD increased by −0.208, −0.1952, and −0.0548, respectively. The test set image results showed that the thyroid edges segmented by the MSFA-U-net model were closer to the standard thyroid delineated by the experts, in comparison with those segmented by the other three models. Moreover, the edges were smoother, over-anti-noise interference was stronger, and oversegmentation and undersegmentation were reduced. Conclusion: The MSFA-U-net model can meet basic clinical requirements and improve the efficiency of physicians' clinical work.

scholarly journals Cost-Sensitive Approach to Improve the HTTP Traffic Detection Performance on Imbalanced Data

2021 ◽  
Vol 2021 ◽  
pp. 1-11
Author(s):  
Wenmin Li ◽  
Sanqi Sun ◽  
Shuo Zhang ◽  
Hua Zhang ◽  
Yijie Shi
Keyword(s):  
Feature Extraction ◽  
Cost Function ◽  
Network Traffic ◽  
Detection System ◽  
Imbalanced Data ◽  
Detection Performance ◽  
Learning Technology ◽  
The Cost ◽  
Decision Boundaries ◽  
Traffic Detection

Aim. The purpose of this study is how to better detect attack traffic in imbalance datasets. The deep learning technology has played an important role in detecting malicious network traffic in recent years. However, it suffers serious imbalance distribution of data if the traffic model skews towards the modeling in the benign direction, because only a small portion of traffic is malicious, while most network traffic is benign. That is the reason why the authors wrote this manuscript. Methods. We propose a cost-sensitive approach to improve the HTTP traffic detection performance with imbalanced data and also present a character-level abstract feature extraction approach that can provide features with clear decision boundaries in addition. Finally, we design a spark-based HTTP traffic detection system based on these two approaches. Results. The methods proposed in this paper work well in imbalanced datasets. Compared to other methods, the experiment results indicate that our system has F1-score in a high precision. Conclusion. For imbalanced HTTP traffic detection, we confirmed that the method of feature extraction and the cost function is very effective. In the future, we may focus on how to use the cost function to further improve detection performance.

Do I Know What I’m Doing? Cognitive Dissonance and Action Identification Theory

2015 ◽  
Vol 18 ◽  
Author(s):  
Valérie Fointiat ◽  
Audrey Pelt
Keyword(s):  
Cognitive Dissonance ◽  
Attitude Change ◽  
Action Theory ◽  
Action Identification ◽  
Problematic Behavior ◽  
Target Behavior ◽  
Low Level ◽  
Identification Theory ◽  
High Level ◽  
Dissonance Reduction

AbstractOur main purpose was to explore hypotheses derived from the Identification of Action Theory in a particular situation that is, a dissonant situation. Thus, we varied the identification (low versus high-level) of a problematic behavior (to stop speaking for 24 hours) in the forced compliance paradigm. Two modes of dissonance reduction were presented: cognitive rationalization (classical attitude-change) and behavioral rationalization (target behavior: to stop speaking for 48 hours). As predicted, the results showed that high-level identity of action leads to cognitive rationalization whereas low-level identity leads to behavioural rationalization. Thus, participants identifying the problematic behavior at a low-level were more inclined to accept the target behavior, compared with participants identifying their problematic behavior at a higher-level. These results are of particular interest for understanding the extent to which the understanding of the discrepant act interferes with the cognitive processes of dissonance reduction.

A Novel Network Traffic Anomaly Detection Based on Multi-Scale Fusion

2011 ◽  
Vol 48-49 ◽  
pp. 102-105
Author(s):  
Guo Zhen Cheng ◽  
Dong Nian Cheng ◽  
He Lei
Keyword(s):  
Anomaly Detection ◽  
False Alarm ◽  
False Alarm Rate ◽  
Network Traffic ◽  
Self Similarity ◽  
Data Set ◽  
Multi Scale ◽  
Traffic Anomaly ◽  
Detection Evaluation ◽  
Better Than

Detecting network traffic anomaly is very important for network security. But it has high false alarm rate, low detect rate and that can’t perform real-time detection in the backbone very well due to its nonlinearity, nonstationarity and self-similarity. Therefore we propose a novel detection method—EMD-DS, and prove that it can reduce mean error rate of anomaly detection efficiently after EMD. On the KDD CUP 1999 intrusion detection evaluation data set, this detector detects 85.1% attacks at low false alarm rate which is better than some other systems.

Analysis of NetFlow Features’ Importance in Malicious Network Traffic Detection

2021 ◽  
pp. 52-61
Author(s):  
Adrián Campazas-Vega ◽  
Ignacio Samuel Crespo-Martínez ◽  
Ángel Manuel Guerrero-Higueras ◽  
Claudia Álvarez-Aparicio ◽  
Vicente Matellán
Keyword(s):  
Network Traffic ◽  
Traffic Detection ◽  
Features Importance
Sign in / Sign up

Export Citation Format

Share Document