Guidelines and a Framework to Improve the Delivery of Network Intrusion Detection Datasets

Brian Lewandowski, Brian Lewandowski

2023

Abstract

Applying deep learning techniques to perform network intrusion detection has expanded significantly in recent years. One of the main factors contributing to this expansion is the availability of improved network intrusion detection datasets. Despite recent improvements to these datasets, researchers have found it difficult to effectively compare methodologies across a wide variety of datasets due to the unique features generated as part of the delivered datasets. In addition, it is often difficult to generate new features using a dataset due to the lack of source data or inadequate ground truth labeling information for a given dataset. In this work, we look at network intrusion detection dataset development with a focus on improving the delivery of datasets from a dataset researcher to other downstream researchers. Specifically, we focus on making dataset features reproducible, providing clear labeling criteria, and allowing a clear path for researchers to generate new features. We outline a set of guidelines for achieving these improvements along with providing a publicly available implementation framework that demonstrates the guidelines using an existing network intrusion detection dataset.

Download


Paper Citation


in Harvard Style

Lewandowski B. (2023). Guidelines and a Framework to Improve the Delivery of Network Intrusion Detection Datasets. In Proceedings of the 20th International Conference on Security and Cryptography - Volume 1: SECRYPT; ISBN 978-989-758-666-8, SciTePress, pages 649-658. DOI: 10.5220/0012052300003555


in Bibtex Style

@conference{secrypt23,
author={Brian Lewandowski},
title={Guidelines and a Framework to Improve the Delivery of Network Intrusion Detection Datasets},
booktitle={Proceedings of the 20th International Conference on Security and Cryptography - Volume 1: SECRYPT},
year={2023},
pages={649-658},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012052300003555},
isbn={978-989-758-666-8},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 20th International Conference on Security and Cryptography - Volume 1: SECRYPT
TI - Guidelines and a Framework to Improve the Delivery of Network Intrusion Detection Datasets
SN - 978-989-758-666-8
AU - Lewandowski B.
PY - 2023
SP - 649
EP - 658
DO - 10.5220/0012052300003555
PB - SciTePress