Am I rare? An intelligent summarization approach for identifying hidden anomalies

Samira Ghodratnama; Mehrdad Zakershahrak; Fariborz Sobhanmanesh

doi:10.1007/978-3-030-76352-7_31

Am I rare? An intelligent summarization approach for identifying hidden anomalies

Samira Ghodratnama^*, Mehrdad Zakershahrak, Fariborz Sobhanmanesh

^*Corresponding author for this work

School of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

6 Citations (Scopus)

Abstract

Monitoring network traffic data to detect any hidden patterns of anomalies is a challenging and time-consuming task which requires high computing resources. To this end, an appropriate summarization technique is of great importance, where it can be a substitute for the original data. However, the summarized data is under the threat of removing anomalies. Therefore, it is vital to create a summary that can reflect the same pattern as the original data. Therefore, in this paper, we propose an INtelligent Summarization approach for IDENTifying hidden anomalies, called INSIDENT. The proposed approach guarantees to keep the original data distribution in summarized data. Our approach is a clustering-based algorithm that dynamically maps original feature space to a new feature space by locally weighting features in each cluster. Therefore, in new feature space, similar samples are closer, and consequently, outliers are more detectable. Besides, selecting representatives based on cluster size keeps the same distribution as the original data in summarized data. INSIDENT can be used both as the preprocess approach before performing anomaly detection algorithms and anomaly detection algorithm. The experimental results on benchmark datasets prove a summary of the data can be a substitute for original data in the anomaly detection task.

Original language	English
Title of host publication	Service-Oriented Computing – ICSOC 2020 Workshops
Subtitle of host publication	AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events Dubai, United Arab Emirates, December 14–17, 2020: Proceedings
Editors	Hakim Hacid, Fatma Outay, Hye-young Paik, Amira Alloum, Marinella Petrocchi, Mohamed Reda Bouadjenek, Amin Beheshti, Xumin Liu, Abderrahmane Maaradji
Place of Publication	Cham, Switzerland
Publisher	Springer, Springer Nature
Pages	309-323
Number of pages	15
ISBN (Electronic)	9783030763527
ISBN (Print)	9783030763510
DOIs	https://doi.org/10.1007/978-3-030-76352-7_31
Publication status	Published - 2021
Event	AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events held in conjunction with 18th International Conference on Service-Oriented Computing, ICSOC 2020 - Virtual, Online Duration: 14 Dec 2020 → 17 Dec 2020

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	12632
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events held in conjunction with 18th International Conference on Service-Oriented Computing, ICSOC 2020
City	Virtual, Online
Period	14/12/20 → 17/12/20

Keywords

Anomaly detection
Summarization
Network data
Clustering
Classification

Access to Document

10.1007/978-3-030-76352-7_31

Cite this

Ghodratnama, S., Zakershahrak, M., & Sobhanmanesh, F. (2021). Am I rare? An intelligent summarization approach for identifying hidden anomalies. In H. Hacid, F. Outay, H. Paik, A. Alloum, M. Petrocchi, M. R. Bouadjenek, A. Beheshti, X. Liu, & A. Maaradji (Eds.), Service-Oriented Computing – ICSOC 2020 Workshops: AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events Dubai, United Arab Emirates, December 14–17, 2020: Proceedings (pp. 309-323). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12632). Springer, Springer Nature. https://doi.org/10.1007/978-3-030-76352-7_31

Ghodratnama, Samira ; Zakershahrak, Mehrdad ; Sobhanmanesh, Fariborz. / Am I rare? An intelligent summarization approach for identifying hidden anomalies. Service-Oriented Computing – ICSOC 2020 Workshops: AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events Dubai, United Arab Emirates, December 14–17, 2020: Proceedings. editor / Hakim Hacid ; Fatma Outay ; Hye-young Paik ; Amira Alloum ; Marinella Petrocchi ; Mohamed Reda Bouadjenek ; Amin Beheshti ; Xumin Liu ; Abderrahmane Maaradji. Cham, Switzerland : Springer, Springer Nature, 2021. pp. 309-323 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{b6bdbc158f3f4f01b20f8f6abb2e08b1,

title = "Am I rare? An intelligent summarization approach for identifying hidden anomalies",

abstract = "Monitoring network traffic data to detect any hidden patterns of anomalies is a challenging and time-consuming task which requires high computing resources. To this end, an appropriate summarization technique is of great importance, where it can be a substitute for the original data. However, the summarized data is under the threat of removing anomalies. Therefore, it is vital to create a summary that can reflect the same pattern as the original data. Therefore, in this paper, we propose an INtelligent Summarization approach for IDENTifying hidden anomalies, called INSIDENT. The proposed approach guarantees to keep the original data distribution in summarized data. Our approach is a clustering-based algorithm that dynamically maps original feature space to a new feature space by locally weighting features in each cluster. Therefore, in new feature space, similar samples are closer, and consequently, outliers are more detectable. Besides, selecting representatives based on cluster size keeps the same distribution as the original data in summarized data. INSIDENT can be used both as the preprocess approach before performing anomaly detection algorithms and anomaly detection algorithm. The experimental results on benchmark datasets prove a summary of the data can be a substitute for original data in the anomaly detection task.",

keywords = "Anomaly detection, Summarization, Network data, Clustering, Classification",

author = "Samira Ghodratnama and Mehrdad Zakershahrak and Fariborz Sobhanmanesh",

year = "2021",

doi = "10.1007/978-3-030-76352-7_31",

language = "English",

isbn = "9783030763510",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer, Springer Nature",

pages = "309--323",

editor = "Hakim Hacid and Fatma Outay and Hye-young Paik and Amira Alloum and Marinella Petrocchi and Bouadjenek, {Mohamed Reda} and Amin Beheshti and Xumin Liu and Abderrahmane Maaradji",

booktitle = "Service-Oriented Computing – ICSOC 2020 Workshops",

address = "United States",

note = "AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events held in conjunction with 18th International Conference on Service-Oriented Computing, ICSOC 2020 ; Conference date: 14-12-2020 Through 17-12-2020",

}

Ghodratnama, S, Zakershahrak, M & Sobhanmanesh, F 2021, Am I rare? An intelligent summarization approach for identifying hidden anomalies. in H Hacid, F Outay, H Paik, A Alloum, M Petrocchi, MR Bouadjenek, A Beheshti, X Liu & A Maaradji (eds), Service-Oriented Computing – ICSOC 2020 Workshops: AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events Dubai, United Arab Emirates, December 14–17, 2020: Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 12632, Springer, Springer Nature, Cham, Switzerland, pp. 309-323, AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events held in conjunction with 18th International Conference on Service-Oriented Computing, ICSOC 2020, Virtual, Online, 14/12/20. https://doi.org/10.1007/978-3-030-76352-7_31

Am I rare? An intelligent summarization approach for identifying hidden anomalies. / Ghodratnama, Samira; Zakershahrak, Mehrdad; Sobhanmanesh, Fariborz.
Service-Oriented Computing – ICSOC 2020 Workshops: AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events Dubai, United Arab Emirates, December 14–17, 2020: Proceedings. ed. / Hakim Hacid; Fatma Outay; Hye-young Paik; Amira Alloum; Marinella Petrocchi; Mohamed Reda Bouadjenek; Amin Beheshti; Xumin Liu; Abderrahmane Maaradji. Cham, Switzerland: Springer, Springer Nature, 2021. p. 309-323 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12632).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Am I rare? An intelligent summarization approach for identifying hidden anomalies

AU - Ghodratnama, Samira

AU - Zakershahrak, Mehrdad

AU - Sobhanmanesh, Fariborz

PY - 2021

Y1 - 2021

N2 - Monitoring network traffic data to detect any hidden patterns of anomalies is a challenging and time-consuming task which requires high computing resources. To this end, an appropriate summarization technique is of great importance, where it can be a substitute for the original data. However, the summarized data is under the threat of removing anomalies. Therefore, it is vital to create a summary that can reflect the same pattern as the original data. Therefore, in this paper, we propose an INtelligent Summarization approach for IDENTifying hidden anomalies, called INSIDENT. The proposed approach guarantees to keep the original data distribution in summarized data. Our approach is a clustering-based algorithm that dynamically maps original feature space to a new feature space by locally weighting features in each cluster. Therefore, in new feature space, similar samples are closer, and consequently, outliers are more detectable. Besides, selecting representatives based on cluster size keeps the same distribution as the original data in summarized data. INSIDENT can be used both as the preprocess approach before performing anomaly detection algorithms and anomaly detection algorithm. The experimental results on benchmark datasets prove a summary of the data can be a substitute for original data in the anomaly detection task.

AB - Monitoring network traffic data to detect any hidden patterns of anomalies is a challenging and time-consuming task which requires high computing resources. To this end, an appropriate summarization technique is of great importance, where it can be a substitute for the original data. However, the summarized data is under the threat of removing anomalies. Therefore, it is vital to create a summary that can reflect the same pattern as the original data. Therefore, in this paper, we propose an INtelligent Summarization approach for IDENTifying hidden anomalies, called INSIDENT. The proposed approach guarantees to keep the original data distribution in summarized data. Our approach is a clustering-based algorithm that dynamically maps original feature space to a new feature space by locally weighting features in each cluster. Therefore, in new feature space, similar samples are closer, and consequently, outliers are more detectable. Besides, selecting representatives based on cluster size keeps the same distribution as the original data in summarized data. INSIDENT can be used both as the preprocess approach before performing anomaly detection algorithms and anomaly detection algorithm. The experimental results on benchmark datasets prove a summary of the data can be a substitute for original data in the anomaly detection task.

KW - Anomaly detection

KW - Summarization

KW - Network data

KW - Clustering

KW - Classification

UR - http://www.scopus.com/inward/record.url?scp=85111377766&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-76352-7_31

DO - 10.1007/978-3-030-76352-7_31

M3 - Conference proceeding contribution

AN - SCOPUS:85111377766

SN - 9783030763510

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 309

EP - 323

BT - Service-Oriented Computing – ICSOC 2020 Workshops

A2 - Hacid, Hakim

A2 - Outay, Fatma

A2 - Paik, Hye-young

A2 - Alloum, Amira

A2 - Petrocchi, Marinella

A2 - Bouadjenek, Mohamed Reda

A2 - Beheshti, Amin

A2 - Liu, Xumin

A2 - Maaradji, Abderrahmane

PB - Springer, Springer Nature

CY - Cham, Switzerland

T2 - AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events held in conjunction with 18th International Conference on Service-Oriented Computing, ICSOC 2020

Y2 - 14 December 2020 through 17 December 2020

ER -

Ghodratnama S, Zakershahrak M, Sobhanmanesh F. Am I rare? An intelligent summarization approach for identifying hidden anomalies. In Hacid H, Outay F, Paik H, Alloum A, Petrocchi M, Bouadjenek MR, Beheshti A, Liu X, Maaradji A, editors, Service-Oriented Computing – ICSOC 2020 Workshops: AIOps, CFTIC, STRAPS, AI-PA, AI-IOTS, and Satellite Events Dubai, United Arab Emirates, December 14–17, 2020: Proceedings. Cham, Switzerland: Springer, Springer Nature. 2021. p. 309-323. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-76352-7_31

Am I rare? An intelligent summarization approach for identifying hidden anomalies

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this