In recent years, the rapid development of information and communication technology results in too many loopholes in the network, and thus attracts lots of hackers’ attacks. Intrusion Detection System (IDS) has been developed to detect these attacks. Depending on different data and analysis methods, this system will have different detection methods. But, there is no one model is absolutely effective. Therefore, this study will focus on the anomaly detection. We propose a LKPCA (Local Kernel-Principal Component Analysis) method to increase the performance of classification. This study is divided into two stages. In the first stage, we use feature extraction methods to reduce dimensionality. And we build binary classifier by support vector machine (SVM) and Decision Tree (DT). We attempt to confirm the LKPCA is the best feature extraction method after evaluated the performance of the classification. In our study, we use LKPCA, Local Latent Semantic Indexing (LLSI) and Local Principal Component Analysis (LPCA), which introduce class information to feature extraction techniques, and compare to Kernel-Principal Component Analysis (KPCA), Latent Semantic Indexing (LSI), Principal Component Analysis (PCA).In the second stage, we use the LKPCA method to build multiple classifier by SVM and DT. We also evaluated the performance of classification. Finally, NSL-KDD data set and KDD data set will be employed to testify the effectiveness of the proposed methods.