Detection of Point Anomalies in Railway Intelligent Control System Using Fast Clustering Techniques

  • Andrey V. ChernovEmail author
  • Ilias K. Savvas
  • Maria A. Butakova
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 875)


This work presents a new area of application for clustering techniques in industrial and transport applications. The main aim of the research is to propose the technique for detection of point anomalies in telecommunication traffic produced by network subsystems of railway intelligent control system. The central idea behind is to apply enhanced DBSCAN algorithms for finding the outliers in traffic which are associated with unintended erroneous events or deliberated attacks targeted to infrastructure malfunction. The traffic flows in a part of the railway intelligent control system has been described in detail. Point anomaly detection in IP-networks data using distributed DBSCAN has been proposed. Series of computation experiments for outlier detection in network traffic has been implemented. The experiments showed the applicability of distributed DBSCAN technique to the robust detection of point anomalies caused by various incidents in the network infrastructure of railway intelligent control system.


Network anomaly detection Point anomalies Clustering DBSCAN Intelligent transportation system 


  1. 1.
    Chandola, V., Banerjee, A., Kumar, V.: Anomaly detection: a survey. ACM Comput. Surv. 41(3), 15:1–15:58 (2009). Scholar
  2. 2.
    Bhuyan, M.H., Bhattacharyya, D.K., Kalita, J.K.: Network anomaly detection: methods, systems and tools. IEEE Commun. Surv. Tutor. 16(1), 303–336 (2014). Scholar
  3. 3.
    Thottan, M., Ji, C.: Anomaly detection in IP networks. IEEE Trans. Signal Process. 51(8), 2191–2204 (2003). Scholar
  4. 4.
    Chernov, A.V., Butakova, M.A., Vereskun, V.D., Kartashov, O.O.: Mobile smart objects for incidents analysis in railway intelligent control system. Adv. Intell. Syst. Comput. 680, 128–137 (2017). Scholar
  5. 5.
    Chernov, A.V., Butakova, M.A., Karpenko, E.V.: Security incident detection technique for multilevel intelligent control systems on railway transport in Russia. In: 2015 23rd Telecommunications Forum Telfor (TELFOR), pp. 1–4 (2015).
  6. 6.
    Chernov, A.V., Bogachev, V.A., Karpenko, E.V., Butakova, M.A., Davidov, Y.V.: Rough and fuzzy sets approach for incident identification in railway infrastructure management system. In: 2016 XIX IEEE International Conference on Soft Computing and Measurements (SCM), St. Petersburg, pp. 228–230 (2016).
  7. 7.
    Chernov, A.V., Kartashov, O.O., Butakova, M.A., Karpenko, E.V.: Incident data preprocessing in railway control systems using a rough-set-based approach. In: 2017 XX IEEE International Conference on Soft Computing and Measurements (SCM), St. Petersburg, pp. 248–251 (2017).
  8. 8.
    Butakova, M.A., Chernov, A.V., Shevchuk P.S., Vereskun, V.D.: Complex event processing for network anomaly detection in digital railway communication services. In: 25th Telecommunication Forum (TELFOR), Belgrade, pp. 1–4 (2017)
  9. 9.
    MacQueen, J.: Some methods for classification and analysis of multivariate observations. In: Proceedings of the Fifth Berkeley Symposium on Mathematical Statistics and Probability, vol. 1: Statistics, University of California Press, Berkeley, pp. 281–297 (1967).
  10. 10.
    Ester, M., Kriegel, H.-P., Sander, J., Xu, X.: A density based algorithm for discovering clusters in large spatial databases with noise. In: Proceedings of the KDD 1996, pp. 226–231 (1996).
  11. 11.
    Savvas, I.K., Tselios, D.: Parallelizing DBSCAN algorithm using MPI. In: 2016 IEEE 25th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE), Paris, pp. 77–82 (2016).
  12. 12.
    Tcpdump & libpcap (command-line packet analyzer and library for network traffic capture), April 2018.
  13. 13.
    MPICH (High-Performance Portable Message Passing Interface), April 2018.
  14. 14.
    Apache ZooKeper (centralized service for maintaining configuration information, naming, providing distributed synchronization, and providing group services), April 2018.

Copyright information

© Springer Nature Switzerland AG 2019

Authors and Affiliations

  • Andrey V. Chernov
    • 1
    Email author
  • Ilias K. Savvas
    • 2
  • Maria A. Butakova
    • 1
  1. 1.Department of Computers and Automated Control SystemsRostov State Transport UniversityRostov-on-DonRussia
  2. 2.Department of Computer Science and EngineeringT.E.I. of ThessalyLarissaGreece

Personalised recommendations