Feature Grouping for Intrusion Detection Based on Mutual Information

Jingping Song, Zhiliang Zhu, Christopher Price

Research output: Contribution to journalArticlepeer-review

6 Citations (Scopus)
207 Downloads (Pure)

Abstract

Intrusion detection is an important task for network operators in today’s Internet. Traditional network intrusion detection systems rely on either specialized signatures of previously seen attacks, or on labeled traffic datasets that are expensive and difficult to re-produce for user-profiling to hunt out network attacks. This paper presents a feature grouping method for the selection of features for intrusion detection. The method is based on mutual information theory and is tested against KDD CUP 99 dataset. It ranks the mutual information between features and uses the fuzzy C means algorithm to compose groups. The largest mutual information between each feature and a class label within a certain group is then selected. The evaluation results show that better classification performance results from such selected features.
Original languageEnglish
Pages (from-to)987-993
JournalJournal of Communications
Volume9
Issue number12
DOIs
Publication statusPublished - 2014

Keywords

  • mutual information
  • feature grouping
  • intrusion detection
  • feature selection

Fingerprint

Dive into the research topics of 'Feature Grouping for Intrusion Detection Based on Mutual Information'. Together they form a unique fingerprint.

Cite this