Constructing important features from massive network traffic for lightweight intrusion detection. Issue 6 (1st November 2015)
- Record Type:
- Journal Article
- Title:
- Constructing important features from massive network traffic for lightweight intrusion detection. Issue 6 (1st November 2015)
- Main Title:
- Constructing important features from massive network traffic for lightweight intrusion detection
- Authors:
- Wang, Wei
He, Yongzhong
Liu, Jiqiang
Gombault, Sylvain - Abstract:
- Abstract : Efficiently processing massive data is a big issue in high‐speed network intrusion detection, as network traffic has become increasingly large and complex. In this work, instead of constructing a large number of features from massive network traffic, the authors aim to select the most important features and use them to detect intrusions in a fast and effective manner. The authors first employed several techniques, that is, information gain (IG), wrapper with Bayesian networks (BN) and Decision trees (C4.5), to select important subsets of features for network intrusion detection based on KDD'99 data. The authors then validate the feature selection schemes in a real network test bed to detect distributed denial‐of‐service attacks. The feature selection schemes are extensively evaluated based on the two data sets. The empirical results demonstrate that with only the most important 10 features selected from all the original 41 features, the attack detection accuracy almost remains the same or even becomes better based on both BN and C4.5 classifiers. Constructing fewer features can also improve the efficiency of network intrusion detection.
- Is Part Of:
- IET information security. Volume 9:Issue 6(2015)
- Journal:
- IET information security
- Issue:
- Volume 9:Issue 6(2015)
- Issue Display:
- Volume 9, Issue 6 (2015)
- Year:
- 2015
- Volume:
- 9
- Issue:
- 6
- Issue Sort Value:
- 2015-0009-0006-0000
- Page Start:
- 374
- Page End:
- 379
- Publication Date:
- 2015-11-01
- Subjects:
- computer network security -- feature selection -- decision trees
C4.5 classifiers -- attack detection accuracy -- distributed denial‐of‐service attacks -- feature selection schemes -- decision trees -- BN -- Bayesian networks -- IG -- information gain -- high speed network intrusion detection -- massive data -- lightweight intrusion detection -- massive network traffic
Computer security -- Periodicals
Cryptography -- Periodicals
Computer networks -- Security measures -- Periodicals
Database security -- Periodicals
005.8 - Journal URLs:
- https://ietresearch.onlinelibrary.wiley.com/journal/17518717 ↗
http://digital-library.theiet.org/content/journals/iet-ifs ↗
http://www.ietdl.org/IET-IFS ↗
http://www.theiet.org/ ↗ - DOI:
- 10.1049/iet-ifs.2014.0353 ↗
- Languages:
- English
- ISSNs:
- 1751-8709
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4363.252660
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 16470.xml