Generating realistic intrusion detection system dataset based on fuzzy qualitative modeling. (1st June 2017)
- Record Type:
- Journal Article
- Title:
- Generating realistic intrusion detection system dataset based on fuzzy qualitative modeling. (1st June 2017)
- Main Title:
- Generating realistic intrusion detection system dataset based on fuzzy qualitative modeling
- Authors:
- Haider, W.
Hu, J.
Slay, J.
Turnbull, B.P.
Xie, Y. - Abstract:
- Abstract: Prior to deploying any intrusion detection system, it is essential to obtain a realistic evaluation of its performance. However, the major problems currently faced by the research community is the lack of availability of any realistic evaluation dataset and systematic metric for assessing the quantified quality of realism of any intrusion detection system dataset. It is difficult to access and collect data from real-world enterprise networks due to business continuity and integrity issues. In response to this, in this paper, firstly, a metric using a fuzzy logic system based on the Sugeno fuzzy inference model for evaluating the quality of the realism of existing intrusion detection system datasets is proposed. Secondly, based on the proposed metric results, a synthetically realistic next generation intrusion detection systems dataset is designed and generated, and a preliminary analysis conducted to assist in the design of future intrusion detection systems. This generated dataset consists of both normal and abnormal reflections of current network activities occurring at critical cyber infrastructure levels in various enterprises. Finally, using the proposed metric, the generated dataset is analyzed to assess the quality of its realism, with its comparison with publicly available intrusion detection system datasets for verifying its superiority. Abstract : Highlights: A fuzzy qualitative modeling based metric is proposed for evaluating the quality of an IDSAbstract: Prior to deploying any intrusion detection system, it is essential to obtain a realistic evaluation of its performance. However, the major problems currently faced by the research community is the lack of availability of any realistic evaluation dataset and systematic metric for assessing the quantified quality of realism of any intrusion detection system dataset. It is difficult to access and collect data from real-world enterprise networks due to business continuity and integrity issues. In response to this, in this paper, firstly, a metric using a fuzzy logic system based on the Sugeno fuzzy inference model for evaluating the quality of the realism of existing intrusion detection system datasets is proposed. Secondly, based on the proposed metric results, a synthetically realistic next generation intrusion detection systems dataset is designed and generated, and a preliminary analysis conducted to assist in the design of future intrusion detection systems. This generated dataset consists of both normal and abnormal reflections of current network activities occurring at critical cyber infrastructure levels in various enterprises. Finally, using the proposed metric, the generated dataset is analyzed to assess the quality of its realism, with its comparison with publicly available intrusion detection system datasets for verifying its superiority. Abstract : Highlights: A fuzzy qualitative modeling based metric is proposed for evaluating the quality of an IDS dataset. A new IDS dataset is generated over multimillion scale Cyberrange testbed and provided publically. The proposed fuzzy qualitative modeling based metric is applied to proposed and existing major public IDS datasets to assess their quality of realism and to demonstrate the capability of proposed metric in examining the quality of an IDS dataset. … (more)
- Is Part Of:
- Journal of network and computer applications. Volume 87(2017)
- Journal:
- Journal of network and computer applications
- Issue:
- Volume 87(2017)
- Issue Display:
- Volume 87, Issue 2017 (2017)
- Year:
- 2017
- Volume:
- 87
- Issue:
- 2017
- Issue Sort Value:
- 2017-0087-2017-0000
- Page Start:
- 185
- Page End:
- 192
- Publication Date:
- 2017-06-01
- Subjects:
- IDS -- IDS dataset -- Dataset evaluation -- Dataset realism -- Fuzzy logic -- HIDS -- NIDS
Microcomputers -- Periodicals
Computer networks -- Periodicals
Application software -- Periodicals
Micro-ordinateurs -- Périodiques
Réseaux d'ordinateurs -- Périodiques
Logiciels d'application -- Périodiques
Application software
Computer networks
Microcomputers
Periodicals
004.05
004 - Journal URLs:
- http://www.sciencedirect.com/science/journal/10848045 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.jnca.2017.03.018 ↗
- Languages:
- English
- ISSNs:
- 1084-8045
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 5021.410600
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 653.xml