Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection

Minkyung Kim

Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection

Minkyung Kim

Vol. 49, No. 11, pp. 1510-1524, Nov. 2024

10.7840/kics.2024.49.11.1510

Intrusion Detection

Class Imbalanced Data

Oversampling

Feature selection

PDF

Abstract

To accurately detect and defend against ever-evolving cyber-attacks, network security technologies using artificial intelligence are continually advancing. This study analyzed the effective network intrusion detection methods based on the CICIDS2017 dataset, which contains various types of network attacks and has a highly imbalanced class distribution. To enhance detection performance for the minority classes of attacks, five oversampling techniques, including SMOTE, Borderline-SMOTE, ADASYN, GAN, and BiGAN, were applied to the underrepresented Bot and Infiltration classes. Additionally, the impact of feature selection on classification performance was evaluated by selecting features based on the feature importance scores from each machine learning model: Random Forest and XGBoost. The experimental results demonstrated that oversampling with SMOTE and ADASYN improved the recall scores of minority classes. Furthermore, applying feature selection reduced the model's complexity while maintaining or even improving its accuracy.

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Sun-Kuk Moon, Tack-Sung Choi, Young-Cheol Park, Dae Hee Youn · Vol. 32, No. 10

Hwan-hee Lim, Kyung-tae Kim, Byung-jun Lee, Hee-yong Youn · Vol. 44, No. 1

Joon-Ik Kong, Jae-ho Lee, Jiheon Kang, Doo-seop Eom · Vol. 37, No. 8

SeokHyun Moon, Jongbin Lee · Vol. 49, No. 2

Alikhanov Jumabek, SeungSam Yang, YoungTae Noh · Vol. 46, No. 12

Cite this article

[IEEE Style]

M. Kim, "Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection," The Journal of Korean Institute of Communications and Information Sciences, vol. 49, no. 11, pp. 1510-1524, 2024. DOI: 10.7840/kics.2024.49.11.1510.

[ACM Style]

Minkyung Kim. 2024. Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection. The Journal of Korean Institute of Communications and Information Sciences, 49, 11, (2024), 1510-1524. DOI: 10.7840/kics.2024.49.11.1510.

[KICS Style]

Minkyung Kim, "Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection," The Journal of Korean Institute of Communications and Information Sciences, vol. 49, no. 11, pp. 1510-1524, 11. 2024. (https://doi.org/10.7840/kics.2024.49.11.1510)

Vol. 49, No. 11 Index

Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

Comparative Analysis of Oversampling Techniques and Feature Selection for Intrusion Detection

Feature Selection for Multi-Class Genre Classification using Gaussian Mixture Model

Feature Selection Method for the Classification of Traffic in SDN

A Tree-Based Routing Algorithm Considering An Optimization for Efficient Link-Cost Estimation in Military WSN Environments

Research on Improving Fetal Health Prediction Model Using Optimal Fetal Feature Selection Technique

CatBoost-Based Network Intrusion Detection on Imbalanced CIC-IDS-2018 Dataset

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)