An evaluation of feature selection and reduction algorithms for network IDS data

Bjerkestrand, Therese, Tsaptsinos, Dimitris and Pfluegel, Eckhard (2015) An evaluation of feature selection and reduction algorithms for network IDS data. In: 2015 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA 2015); 8-9 May 2015, London. (In Press)

Full text available as:
[img] Text
Evaluation of Feature Selection and Reduction Algorithms for Network IDS Data - Conference proceedings format.docx

Download (20kB)

Abstract

Intrusion detection is concerned with monitoring and analysing events occurring in a computer system in order to discover potential malicious activity. Data mining, which is part of the procedure of knowledge discovery in databases, is the process of analysing the collected data to find patterns or correlations. As the amount of data collected, stored and processed only increases, so does the significance and importance of intrusion detection and data mining. A dataset that has been particularly exposed to research is the dataset used for the Third International Knowledge Discovery and Data Mining Tools competition, KDD99. The KDD99 dataset has been used to identify what data mining techniques relate to certain attack classes and employed to demonstrate that decision trees are more efficient than the Naïve Bayes model when it comes to detecting new attacks. When it comes to detecting network intrusions, the C4.5 algorithm performs better than SVM. The aim of our research is to evaluate and compare the usage of various feature selection and reduction algorithms against publicly available datasets. In this contribution, the focus is on feature selection and reduction algorithms. Three feature selection algorithms, consisting of an attribute evaluator and a test method, have been used. Initial results indicate that the performance of the classifier is unaffected by reducing the number of attributes.

Item Type: Conference or Workshop Item (Poster)
Event Title: 2015 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA 2015)
Uncontrolled Keywords: data mining; KDD dataset; intrusion detection; knowledge discovery; feature selection and reduction
Research Area: Computer science and informatics
Faculty, School or Research Centre: Faculty of Science, Engineering and Computing > School of Computing and Information Systems
Depositing User: Dimitris Tsaptsinos
Date Deposited: 28 Apr 2015 14:22
Last Modified: 28 Apr 2015 14:22
URI: http://eprints.kingston.ac.uk/id/eprint/31530

Actions (Repository Editors)

Item Control Page Item Control Page