relation: https://eprints.uet.vnu.edu.vn/eprints/id/eprint/2759/
title: Intrusion Detection Using a More General Feature Extraction Method for Payload-based Anomaly One-Class Classifier
creator: Nguyen, Xuan Nam
creator: Nguyen, Dai Tho
subject: Information Technology (IT)
description: In this paper, we proposed a method to extract more general features of data for payload-based anomaly IDS. However, because of the significant rise in the number of features, there are numerous redundancies, leading to the rise in the complexity and the decrease in the accuracy of the classification. To that end, we apply Chi square [9] feature selection method to pick up the best features in the feature set. We have done many experiments on real world dataset of HTTP-based attacks to evaluate the performance of our classifier using our feature extraction method. The results show that our classifier can quickly detect the attack packets with very high true positive rate while keeping the false positive rate at a very low level. Besides, the results also indicate that our classifier outperforms other classifiers such as McPAD [10], and PAY [12, 13].
date: 2017-12-02
type: Conference or Workshop Item
type: PeerReviewed
format: application/pdf
language: en
identifier: https://eprints.uet.vnu.edu.vn/eprints/id/eprint/2759/1/Intrusion%20Detection%20Using%20a%20More%20General%20feature%20extraction%20method%20for%20Payload.pdf
identifier:   Nguyen, Xuan Nam and Nguyen, Dai Tho  (2017) Intrusion Detection Using a More General Feature Extraction Method for Payload-based Anomaly One-Class Classifier.  In: Hội thảo lần thứ II Một số vấn đề chọn lọc về an toàn an ninh thông tin, December 2-3, 2017, Ho Chi Minh City, Vietnam.    (In Press)  
relation: http://sois2017.uit.edu.vn/