Evaluating the impact of different Feature as a Counter data aggregation approaches on the performance of NIDSs and their selected features
| dc.contributor.author | Magán Carrión, Roberto | |
| dc.contributor.author | Urdal Muñoz, Daniel | |
| dc.contributor.author | Díaz Cano, Ignacio | |
| dc.contributor.author | Dorronsoro Díaz, Bernabé | |
| dc.contributor.other | Ingeniería Informática | es_ES |
| dc.date.accessioned | 2024-10-23T17:31:36Z | |
| dc.date.available | 2024-10-23T17:31:36Z | |
| dc.date.issued | 2024 | |
| dc.identifier.issn | 1368-9894 | |
| dc.identifier.issn | 1367-0751 | |
| dc.identifier.uri | http://hdl.handle.net/10498/33708 | |
| dc.description.abstract | There is much effort nowadays to protect communication networks against different cybersecurity attacks (which are more and more sophisticated) that look for systems’ vulnerabilities they could exploit for malicious purposes. Network Intrusion Detection Systems (NIDSs) are popular tools to detect and classify such attacks, most of them based on ML models. However, ML-based NIDSs cannot be trained by feeding them with network traffic data as it is. Thus, a Feature Engineering (FE) process plays a crucial role transforming network traffic raw data onto derived one suitable for ML models. In this work, we study the effects of applying one such FE technique in different ways on the performance of two ML models (linear and non-linear) and their selected features. This is the Feature as a Counter approach. The derived observations are computed from either with the same number of raw samples, (batch-based approaches) or by aggregating them by time intervals (timestamp-based approach). Results show that there is no significant differences between the proposed approaches neither in the performance of the models nor in the selected features that validate our proposal making it feasible to be widely used as a standard FE method. | es_ES |
| dc.format | application/pdf | es_ES |
| dc.language.iso | eng | es_ES |
| dc.publisher | Oxford University Press | es_ES |
| dc.rights | Attribution 4.0 Internacional | * |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/ | * |
| dc.source | Logic Journal of the IGPL - 2024, Vol. 32 n. 2 pp. 263-280 | es_ES |
| dc.subject | Machine learning | es_ES |
| dc.subject | feature engineering | es_ES |
| dc.subject | feature selection | es_ES |
| dc.subject | NIDS | es_ES |
| dc.subject | cybersecurity, | es_ES |
| dc.subject | network security | es_ES |
| dc.subject | information security | es_ES |
| dc.title | Evaluating the impact of different Feature as a Counter data aggregation approaches on the performance of NIDSs and their selected features | es_ES |
| dc.type | journal article | es_ES |
| dc.rights.accessRights | open access | es_ES |
| dc.identifier.doi | 10.1093/jigpal/jzae007 | |
| dc.relation.projectID | info:eu-repo/grantAgreement/AEI/Plan Estatal de Investigación Científica y Técnica y de Innovación 2017-2020/RTI2018-100754-B-I00/ES/SISTEMAS INTELIGENTES DE TRANSPORTE URBANO SOSTENIBLE/ | es_ES |
| dc.relation.projectID | info:eu-repo/grantAgreement/AEI/Plan Estatal de Investigación Científica y Técnica y de Innovación 2017-2020/RTI2018-098160-B-I00/ES/DEEP LEARNING IN AIR POLLUTION FORECASTING/ | es_ES |
| dc.relation.projectID | info:eu-repo/grantAgreement/AEI/Plan Estatal de Investigación Científica y Técnica y de Innovación 2017-2020/PID2020-114495RB-I00/ES/CREDENCIALES COLABORATIVAS EN SISTEMAS DE IDENTIDAD AUTO-SOBERANA PARA CONTROL DE ACCESO EN IOT/ | es_ES |
| dc.relation.projectID | info:eu-repo/grantAgreement/JA//FEDER-UCA18-108393 | es_ES |
| dc.type.hasVersion | VoR | es_ES |
Files in this item
This item appears in the following Collection(s)
-
Artículos Científicos [11595]
-
Articulos Científicos Ing. Inf. [299]
This work is under a Creative Commons License Attribution 4.0 Internacional