From Feature Selection to Building of Bayesian Classifiers: A Network Intrusion Detection Perspective
- 1 Faculty of Information Technology, Multimedia University, Cyberjaya, 63100, Selangor, Malaysia
Abstract
Problem statement: Implementing a single or multiple classifiers that involve a Bayesian Network (BN) is a rising research interest in network intrusion detection domain. Approach: However, little attention has been given to evaluate the performance of BN classifiers before they could be implemented in a real system. In this research, we proposed a novel approach to select important features by utilizing two selected feature selection algorithms utilizing filter approach. Results: The selected features were further validated by domain experts where extra features were added into the final proposed feature set. We then constructed three types of BN namely, Naive Bayes Classifiers (NBC), Learned BN and Expert-elicited BN by utilizing a standard network intrusion dataset. The performance of each classifier was recorded. We found that there was no difference in overall performance of the BNs and therefore, concluded that the BNs performed equivalently well in detecting network attacks. Conclusion/Recommendations: The results of the study indicated that the BN built using the proposed feature set has less features but the performance was comparable to BNs built using other feature sets generated by the two algorithms.
DOI: https://doi.org/10.3844/ajassp.2009.1948.1959
Copyright: © 2009 Kok-Chin Khor, Choo-Yee Ting and Somnuk-Phon Amnuaisuk. This is an open access article distributed under the terms of the
Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.
- 2,812 Views
- 2,266 Downloads
- 11 Citations
Download
Keywords
- Network intrusion detection
- Bayesian classifiers
- feature selection