한국정보보호학회:학술대회논문집 (Proceedings of the Korea Institutes of Information Security and Cryptology Conference)
- 한국정보보호학회 2006년도 하계학술대회
- /
- Pages.649-653
- /
- 2006
Network Anomaly Detection using Hybrid Feature Selection
- Kim Eun-Hye (Department of Industrial Engineering, Korea Advanced Institute of Science and Technology) ;
- Kim Se-Hun (Department of Industrial Engineering, Korea Advanced Institute of Science and Technology)
- 발행 : 2006.06.01
초록
In this paper, we propose a hybrid feature extraction method in which Principal Components Analysis is combined with optimized k-Means clustering technique. Our approach hierarchically reduces the redundancy of features with high explanation in principal components analysis for choosing a good subset of features critical to improve the performance of classifiers. Based on this result, we evaluate the performance of intrusion detection by using Support Vector Machine and a nonparametric approach based on k-Nearest Neighbor over data sets with reduced features. The Experiment results with KDD Cup 1999 dataset show several advantages in terms of computational complexity and our method achieves significant detection rate which shows possibility of detecting successfully attacks.
키워드