Date Added: Nov 2009
Intrusion detection in the internet is an active area of research. Intruders can be classified into two types, namely; external intruders who are unauthorized users of the computers they attack, and internal intruders, who have permission to access the system but with some restrictions. The aim of this paper is to present a methodology to recognize attacks during the normal activities in a system. A novel classification via sequential Information Bottleneck (sIB) clustering algorithm has been proposed to build an efficient anomaly based network intrusion detection model.