{"title":"网络入侵检测的特征选择方法","authors":"Kok-Chin Khor, Choo-Yee Ting, Somnuk-Phon Amnuaisuk","doi":"10.1109/ICIME.2009.68","DOIUrl":null,"url":null,"abstract":"Processing huge amount of collected network data to identify network intrusions needs high computational cost. Reducing features in the collected data may therefore solve the problem. We proposed an approach for obtaining optimal number of features to build an efficient model for intrusion detection system (IDS). Two feature selection algorithms were involved to generate two feature sets. These two features sets were then utilized to produce a combined and a shared feature set, respectively. The shared feature set consisted of features agreed by the two feature selection algorithms and therefore considered important features for identifying intrusions. Human intervention was then conducted to find an optimal number of features in between the combined (maximum) and shared feature sets (minimum). Empirical results showed that the proposed feature set gave equivalent results compared to the feature sets generated by the selected feature selection methods, and combined feature sets.","PeriodicalId":445284,"journal":{"name":"2009 International Conference on Information Management and Engineering","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-04-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"21","resultStr":"{\"title\":\"A Feature Selection Approach for Network Intrusion Detection\",\"authors\":\"Kok-Chin Khor, Choo-Yee Ting, Somnuk-Phon Amnuaisuk\",\"doi\":\"10.1109/ICIME.2009.68\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Processing huge amount of collected network data to identify network intrusions needs high computational cost. Reducing features in the collected data may therefore solve the problem. We proposed an approach for obtaining optimal number of features to build an efficient model for intrusion detection system (IDS). Two feature selection algorithms were involved to generate two feature sets. These two features sets were then utilized to produce a combined and a shared feature set, respectively. The shared feature set consisted of features agreed by the two feature selection algorithms and therefore considered important features for identifying intrusions. Human intervention was then conducted to find an optimal number of features in between the combined (maximum) and shared feature sets (minimum). Empirical results showed that the proposed feature set gave equivalent results compared to the feature sets generated by the selected feature selection methods, and combined feature sets.\",\"PeriodicalId\":445284,\"journal\":{\"name\":\"2009 International Conference on Information Management and Engineering\",\"volume\":\"16 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2009-04-03\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"21\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2009 International Conference on Information Management and Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICIME.2009.68\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 International Conference on Information Management and Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICIME.2009.68","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A Feature Selection Approach for Network Intrusion Detection
Processing huge amount of collected network data to identify network intrusions needs high computational cost. Reducing features in the collected data may therefore solve the problem. We proposed an approach for obtaining optimal number of features to build an efficient model for intrusion detection system (IDS). Two feature selection algorithms were involved to generate two feature sets. These two features sets were then utilized to produce a combined and a shared feature set, respectively. The shared feature set consisted of features agreed by the two feature selection algorithms and therefore considered important features for identifying intrusions. Human intervention was then conducted to find an optimal number of features in between the combined (maximum) and shared feature sets (minimum). Empirical results showed that the proposed feature set gave equivalent results compared to the feature sets generated by the selected feature selection methods, and combined feature sets.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
