download0 view993
twitter facebook

공공누리This item is licensed Korea Open Government License

dc.contributor.author
Kamran Siddique
dc.contributor.author
Yangwoo Kim
dc.contributor.author
Muhammad Ashfaq Khan
dc.contributor.author
Zahid Akhtar
dc.contributor.author
정용환
dc.date.accessioned
2019-08-28T07:42:17Z
dc.date.available
2019-08-28T07:42:17Z
dc.date.issued
2018-08-31
dc.identifier.issn
1976-7277
dc.identifier.uri
https://repository.kisti.re.kr/handle/10580/14772
dc.description.abstract
In network intrusion detection research, two characteristics are generally considered vital to building efficient intrusion detection systems (IDSs): an optimal feature selection technique and robust classification schemes. However, the emergence of sophisticated network attacks and the advent of big data concepts in intrusion detection domains require two more significant aspects to be addressed: employing an appropriate big data computing framework and utilizing a contemporary dataset to deal with ongoing advancements. As such, we present a comprehensive approach to building an efficient IDS with the aim of strengthening academic anomaly detection research in real-world operational environments. The proposed system has the following four characteristics: (i) it performs optimal feature selection using information gain and branch-and-bound algorithms; (ii) it employs machine learning techniques for classification, namely, Logistic Regression, Naïve Bayes, and Random Forest; (iii) it introduces bulk synchronous parallel processing to handle the computational requirements of large-scale networks; and (iv) it utilizes a real-time contemporary dataset generated by the Information Security Centre of Excellence at the University of Brunswick (ISCX-UNB) to validate its efficacy. Experimental analysis shows the effectiveness of the proposed framework, which is able to achieve high accuracy, low computational cost, and reduced false alarms.
dc.language
eng
dc.relation.ispartofseries
KSII Transactions on Internet and Information Systems
dc.title
Developing an Intrusion Detection Framework for High-Speed Big Data Networks: A Comprehensive Approach
dc.citation.endPage
4037
dc.citation.number
8
dc.citation.startPage
4021
dc.citation.volume
12
dc.subject.keyword
Network intrusion detection systems
dc.subject.keyword
Anomaly detection
dc.subject.keyword
bulk synchronous parallel
dc.subject.keyword
BSP
dc.subject.keyword
Big Data
dc.subject.keyword
machine learning
dc.subject.keyword
Darpa
dc.subject.keyword
KDD Cup 99
dc.subject.keyword
ISCX-UNB dataset
Appears in Collections:
7. KISTI 연구성과 > 학술지 발표논문
Files in This Item:
There are no files associated with this item.

Browse