Improving the anomaly detection by combining PSO search methods and J48 algorithm
The feature selection techniques are used to find the most important and relevant features in a dataset. Therefore, in this study feature selection technique was used to improve the performance of Anomaly Detection. Many feature selection techniques have been developed and implemented on the NSL-KDD...
Saved in:
| Main Authors: | , , , , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Published: |
2020
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/92824/ http://dx.doi.org/10.23919/EECSI50503.2020.9251872 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Teknologi Malaysia |
| id |
my.utm.92824 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.928242021-10-28T10:14:08Z http://eprints.utm.my/id/eprint/92824/ Improving the anomaly detection by combining PSO search methods and J48 algorithm Kurniabudi, Kurniabudi Abdul Harris, Abdul Harris Mintaria, Albertus Edward Darmawijoyo, Darmawijoyo Stiawan, Deris Idris, Mohd. Yazid Budiarto, Rahmat QA75 Electronic computers. Computer science The feature selection techniques are used to find the most important and relevant features in a dataset. Therefore, in this study feature selection technique was used to improve the performance of Anomaly Detection. Many feature selection techniques have been developed and implemented on the NSL-KDD dataset. However, with the rapid growth of traffic on a network where more applications, devices, and protocols participate, the traffic data is complex and heterogeneous contribute to security issues. This makes the NSL-KDD dataset no longer reliable for it. The detection model must also be able to recognize the type of novel attack on complex network datasets. So, a robust analysis technique for a more complex and larger dataset is required, to overcome the increase of security issues in a big data network. This study proposes particle swarm optimization (PSO) Search methods as a feature selection method. As contribute to feature analysis knowledge, In the experiment a combination of particle swarm optimization (PSO) Search methods with other search methods are examined. To overcome the limitation NSL-KDD dataset, in the experiments the CICIDS2017 dataset used. To validate the selected features from the proposed technique J48 classification algorithm used in this study. The detection performance of the combination PSO Search method with J48 examined and compare with other feature selection and previous study. The proposed technique successfully finds the important features of the dataset, which improve detection performance with 99.89% accuracy. Compared with the previous study the proposed technique has better accuracy, TPR, and FPR.Anomaly Detection, CICIDS2017 2020 Conference or Workshop Item PeerReviewed Kurniabudi, Kurniabudi and Abdul Harris, Abdul Harris and Mintaria, Albertus Edward and Darmawijoyo, Darmawijoyo and Stiawan, Deris and Idris, Mohd. Yazid and Budiarto, Rahmat (2020) Improving the anomaly detection by combining PSO search methods and J48 algorithm. In: 7th International Conference on Electrical Engineering, Computer Science and Informatics, EECSI 2020, 1 - 2 October 2020, Yogyakarta, Indonesia. http://dx.doi.org/10.23919/EECSI50503.2020.9251872 |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| topic |
QA75 Electronic computers. Computer science |
| spellingShingle |
QA75 Electronic computers. Computer science Kurniabudi, Kurniabudi Abdul Harris, Abdul Harris Mintaria, Albertus Edward Darmawijoyo, Darmawijoyo Stiawan, Deris Idris, Mohd. Yazid Budiarto, Rahmat Improving the anomaly detection by combining PSO search methods and J48 algorithm |
| description |
The feature selection techniques are used to find the most important and relevant features in a dataset. Therefore, in this study feature selection technique was used to improve the performance of Anomaly Detection. Many feature selection techniques have been developed and implemented on the NSL-KDD dataset. However, with the rapid growth of traffic on a network where more applications, devices, and protocols participate, the traffic data is complex and heterogeneous contribute to security issues. This makes the NSL-KDD dataset no longer reliable for it. The detection model must also be able to recognize the type of novel attack on complex network datasets. So, a robust analysis technique for a more complex and larger dataset is required, to overcome the increase of security issues in a big data network. This study proposes particle swarm optimization (PSO) Search methods as a feature selection method. As contribute to feature analysis knowledge, In the experiment a combination of particle swarm optimization (PSO) Search methods with other search methods are examined. To overcome the limitation NSL-KDD dataset, in the experiments the CICIDS2017 dataset used. To validate the selected features from the proposed technique J48 classification algorithm used in this study. The detection performance of the combination PSO Search method with J48 examined and compare with other feature selection and previous study. The proposed technique successfully finds the important features of the dataset, which improve detection performance with 99.89% accuracy. Compared with the previous study the proposed technique has better accuracy, TPR, and FPR.Anomaly Detection, CICIDS2017 |
| format |
Conference or Workshop Item |
| author |
Kurniabudi, Kurniabudi Abdul Harris, Abdul Harris Mintaria, Albertus Edward Darmawijoyo, Darmawijoyo Stiawan, Deris Idris, Mohd. Yazid Budiarto, Rahmat |
| author_facet |
Kurniabudi, Kurniabudi Abdul Harris, Abdul Harris Mintaria, Albertus Edward Darmawijoyo, Darmawijoyo Stiawan, Deris Idris, Mohd. Yazid Budiarto, Rahmat |
| author_sort |
Kurniabudi, Kurniabudi |
| title |
Improving the anomaly detection by combining PSO search methods and J48 algorithm |
| title_short |
Improving the anomaly detection by combining PSO search methods and J48 algorithm |
| title_full |
Improving the anomaly detection by combining PSO search methods and J48 algorithm |
| title_fullStr |
Improving the anomaly detection by combining PSO search methods and J48 algorithm |
| title_full_unstemmed |
Improving the anomaly detection by combining PSO search methods and J48 algorithm |
| title_sort |
improving the anomaly detection by combining pso search methods and j48 algorithm |
| publishDate |
2020 |
| url |
http://eprints.utm.my/id/eprint/92824/ http://dx.doi.org/10.23919/EECSI50503.2020.9251872 |
| _version_ |
1715189695307055104 |