Feature selection for anomaly–based network intrusion detection using cluster validity indices

Naidoo, Tyrone; McDonald, Andre M; Tapamo, J-R

dc.contributor.author	Naidoo, Tyrone
dc.contributor.author	McDonald, Andre M
dc.contributor.author	Tapamo, J-R
dc.date.accessioned	2017-06-07T07:08:43Z
dc.date.available	2017-06-07T07:08:43Z
dc.date.issued	2015-09
dc.identifier.citation	Naidoo, T., Tapamo, J-R. and McDonald, A. 2015. Feature selection for anomaly–based network intrusion detection using cluster validity indices. SATNAC: Africa – The Future Communications Galaxy, Hermanus, South Africa, 6-9 September 2015, p. 145-150	en_US
dc.identifier.isbn	978-0-620-67151-4
dc.identifier.uri	http://www.satnac.org.za/proceedings/2015/SATNAC%202015%20Proceedings.pdf
dc.identifier.uri	http://hdl.handle.net/10204/9164
dc.description	SATNAC: Africa – The Future Communications Galaxy, Hermanus, South Africa, 6-9 September 2015	en_US
dc.description.abstract	A feature selection algorithm that is novel in the context of anomaly–based network intrusion detection is proposed in this paper. The distinguishing factor of the proposed feature selection algorithm is its complete lack of dependency on labelled data, which is rarely available in operational networks. It uses normalized cluster validity indices as an objective function that is optimized over the search space of candidate feature subsets via a genetic algorithm. Feature sets produced by the algorithm are shown to improve the classification performance of an anomaly–based network intrusion detection system over the NSL-KDD dataset. The system approaches the performance attained by using feature sets derived from labelled training data via existing wrapper and filter–based feature selection algorithms.	en_US
dc.language.iso	en	en_US
dc.publisher	http://www.satnac.org.za	en_US
dc.relation.ispartofseries	Worklist;15682
dc.relation.ispartofseries	Worklist;15682
dc.subject	Network intrusion detection	en_US
dc.subject	Anomaly detection	en_US
dc.subject	Feature selection	en_US
dc.subject	KDD dataset	en_US
dc.subject	NSL-KDD dataset	en_US
dc.title	Feature selection for anomaly–based network intrusion detection using cluster validity indices	en_US
dc.type	Conference Presentation	en_US
dc.identifier.apacitation	Naidoo, T., McDonald, A., & Tapamo, J. (2015). Feature selection for anomaly–based network intrusion detection using cluster validity indices. http://www.satnac.org.za. http://hdl.handle.net/10204/9164	en_ZA
dc.identifier.chicagocitation	Naidoo, Tyrone, Andre McDonald, and J-R Tapamo. "Feature selection for anomaly–based network intrusion detection using cluster validity indices." (2015): http://hdl.handle.net/10204/9164	en_ZA
dc.identifier.vancouvercitation	Naidoo T, McDonald A, Tapamo J, Feature selection for anomaly–based network intrusion detection using cluster validity indices; http://www.satnac.org.za; 2015. http://hdl.handle.net/10204/9164 .	en_ZA
dc.identifier.ris	TY - Conference Presentation AU - Naidoo, Tyrone AU - McDonald, Andre AU - Tapamo, J-R AB - A feature selection algorithm that is novel in the context of anomaly–based network intrusion detection is proposed in this paper. The distinguishing factor of the proposed feature selection algorithm is its complete lack of dependency on labelled data, which is rarely available in operational networks. It uses normalized cluster validity indices as an objective function that is optimized over the search space of candidate feature subsets via a genetic algorithm. Feature sets produced by the algorithm are shown to improve the classification performance of an anomaly–based network intrusion detection system over the NSL-KDD dataset. The system approaches the performance attained by using feature sets derived from labelled training data via existing wrapper and filter–based feature selection algorithms. DA - 2015-09 DB - ResearchSpace DP - CSIR KW - Network intrusion detection KW - Anomaly detection KW - Feature selection KW - KDD dataset KW - NSL-KDD dataset LK - https://researchspace.csir.co.za PY - 2015 SM - 978-0-620-67151-4 T1 - Feature selection for anomaly–based network intrusion detection using cluster validity indices TI - Feature selection for anomaly–based network intrusion detection using cluster validity indices UR - http://hdl.handle.net/10204/9164 ER -	en_ZA

Files in this item

Name: Naidoo_2015.pdf

Size: 323.0Kb

Format: PDF

Description: Conference paper

View/Open

This item appears in the following Collection(s)

Conference Publications

Show simple item record

Browse

All of ResearchSpace
This Collection
- By Issue Date
- Authors
- Titles
- Subjects
- Publication Type
- Cluster
- Impact Area

Quick Links

Legislation and compliance

General Enquiries

Tel: + 27 12 841 2911
Email: callcentre@csir.co.za

Physical Address
Meiring Naudé Road
Brummeria
Pretoria
South Africa

Postal Address
PO Box 395
Pretoria 0001
South Africa

Social Connect

Resources on this site are free to download and reuse according to associated licensing provision. Please read the terms and conditions of usage of each resource.