Publication: Novel bi-directional flow-based traffic generation framework for ids evaluation and exploratory data analysis
Issued Date
2021-01-01
Resource Type
ISSN
18826652
03875806
03875806
Other identifier(s)
2-s2.0-85103640534
Rights
Mahidol University
Rights Holder(s)
SCOPUS
Bibliographic Citation
Journal of Information Processing. Vol.29, (2021), 256-265
Suggested Citation
Korakoch Wilailux, Sudsanguan Ngamsuriyaroj Novel bi-directional flow-based traffic generation framework for ids evaluation and exploratory data analysis. Journal of Information Processing. Vol.29, (2021), 256-265. doi:10.2197/IPSJJIP.29.256 Retrieved from: https://repository.li.mahidol.ac.th/handle/20.500.14594/76749
Research Projects
Organizational Units
Authors
Journal Issue
Thesis
Title
Novel bi-directional flow-based traffic generation framework for ids evaluation and exploratory data analysis
Author(s)
Other Contributor(s)
Abstract
Flow-based network traffic information has been recently used to detect malicious intrusion. However, several available public flow-based datasets are unidirectional, and bidirectional flow-based datasets are rarely available. In this paper, a novel framework to generate bidirectional flow-based datasets for IDS evaluation is proposed. The generated dataset has the mixed combination of normal background traffic and attack traffic. The background traffic is based on the key traffic feature of the MAWI network traffic traces, and five popular attack traffics are generated based on their statistical traffic features. The generated dataset is characterized using the PCA approach, and we found out that benign and malicious traffic are distinct. With the proposed framework, a dataset of bi-directional flow-based traffic is generated and it would be used for evaluating an effective intrusion detection engine.