loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Arnaud Rosay 1 ; Eloïse Cheval 2 ; Florent Carlier 3 and Pascal Leroux 3

Affiliations: 1 STMicroelectronics, Rue Pierre-Félix Delarue, Le Mans, France ; 2 Polytech Nantes, Nantes University, Rue Christian Pauc, Nantes, France ; 3 CREN, Le Mans University, Avenue Olivier Messiaen, Le Mans, France

Keyword(s): Network Intrusion Detection, CIC-IDS2017, CSE-CIC-IDS2018, CICFlowMeter, LycoSTand, LYCOS-IDS2017, Machine Learning.

Abstract: With an ever increasing number of connected devices, network intrusion detection is more important than ever. Over the past few decades, several datasets were created to address this security issue. Analysis of older datasets, such as KDD-Cup99 and NSL-KDD, uncovered problems, paving the way for newer datasets that solved the identified issues. Among the recent datasets for network intrusion detection, CIC-IDS2017 is now widely used. It presents the advantage of being available as raw data and as flow-based features in CSV files. In this paper, we analyze this dataset in detail and report several problems we discovered in the flows extracted from the network packets. To address these issues, we propose a new feature extraction tool called LycoSTand, available as open source. We create LYCOS-IDS2017 dataset by extracting features from CIC-IDS2017 raw data files. The performance comparison between the original and the new datasets shows significant improvements for all machine learning algorithms we tested. Beyond the improvements on CIC- IDS2017, we discuss other datasets that are affected by the same problems and for which LycoSTand could be used to generate improved network intrusion detection datasets. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.141.47.139

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Rosay, A. ; Cheval, E. ; Carlier, F. and Leroux, P. (2022). Network Intrusion Detection: A Comprehensive Analysis of CIC-IDS2017. In Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-553-1; ISSN 2184-4356, SciTePress, pages 25-36. DOI: 10.5220/0010774000003120

@conference{icissp22,
author={Arnaud Rosay and Eloïse Cheval and Florent Carlier and Pascal Leroux},
title={Network Intrusion Detection: A Comprehensive Analysis of CIC-IDS2017},
booktitle={Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP},
year={2022},
pages={25-36},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010774000003120},
isbn={978-989-758-553-1},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP
TI - Network Intrusion Detection: A Comprehensive Analysis of CIC-IDS2017
SN - 978-989-758-553-1
IS - 2184-4356
AU - Rosay, A.
AU - Cheval, E.
AU - Carlier, F.
AU - Leroux, P.
PY - 2022
SP - 25
EP - 36
DO - 10.5220/0010774000003120
PB - SciTePress