• DocumentCode
    615196
  • Title

    An improved feature selection algorithm based on MAHALANOBIS distance for Network Intrusion Detection

  • Author

    Zhao Yongli ; Zhang Yungui ; Tong Weiming ; Chen Hongzhi

  • Author_Institution
    State Key Lab. of Hybrid Process Ind., Autom. Res. & Design Inst. of Metall. Ind., Beijing, China
  • fYear
    2013
  • fDate
    18-19 May 2013
  • Firstpage
    69
  • Lastpage
    73
  • Abstract
    Network Intrusion Detection System (NIDS) plays an important role in providing network security. Efficient NIDS can be developed by defining a proper rule set for classifying network audit data into normal or attack patterns. Generally, each dataset is characterized by a large set of features, but not all features will be relevant or fully contribute identifying an attack. Since different attacks need different subsets to have better detection accuracy, this paper describes an improved feature selection algorithm to identify most appropriate subset of features for a certain attack. The proposed method is based on MAHALANOBIS Distance feature ranking and an improved exhaustive search to choose a better combination of features. We evaluate the approach on the KDD CUP 1999 datasets using SVM classifier and KNN classifier. The results show that classification is done with high classification rate and low misclassification rate with the reduced feature subsets.
  • Keywords
    computer networks; security of data; support vector machines; telecommunication security; K-nearest neighbor; KDD CUP 1999 datasets; KNN classifier; MAHALANOBIS distance feature ranking; NIDS; SVM classifier; detection accuracy; exhaustive search; feature selection algorithm; network audit data; network intrusion detection system; network security; support vector machines; Feature extraction; Industries; Kernel; Optimized production technology; Support vector machines; Virtual private networks; Feature Selection; KNN; MAHALANOBIS Distance; SVM; classification; intrusion detection;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Sensor Network Security Technology and Privacy Communication System (SNS & PCS), 2013 International Conference on
  • Conference_Location
    Nangang
  • Print_ISBN
    978-1-4673-6452-2
  • Type

    conf

  • DOI
    10.1109/SNS-PCS.2013.6553837
  • Filename
    6553837