Identification of effective network features to detect Smurf attacks

Author

Zargar, Gholam Reza ; Kabiri, Peyman

Author_Institution

Fac. of Comput. Eng., Iran Univ. of Sci. & Technol. of Iran, Tehran, Iran

fYear

2009

fDate

16-18 Nov. 2009

Firstpage

49

Lastpage

52

Abstract

Intrusion detection system (IDS) detects intrusion attempts on computer systems. In intrusion detection systems, feature reduction, feature extraction and feature selection play important role in a sense of improving classification accuracy while keeping the computational complexity at minimum. Smurf attack is one of the common denial-of-service attack methods. In this paper, principal component analysis method is used for feature selection and dimension reduction. TCP dump from DARPA98 dataset is used for the experiments. 32 basic features are extracted for the selection of effective features in TCP/IP header to detect Smurf attacks.

Keywords

computational complexity; feature extraction; principal component analysis; security of data; computational complexity; denial-of-service attack methods; dimension reduction; feature extraction; feature reduction; feature selection; intrusion detection system; network feature identification; principal component analysis; smurf attack detection; Broadcasting; Computer crime; Computer networks; Computer vision; Data mining; Feature extraction; Intrusion detection; Principal component analysis; TCPIP; Telecommunication traffic; Data Dimension Reduction; Feature Selection; Intrusion Detection; Principal Components Analysis; Smurf;

fLanguage

English

Publisher

ieee

Conference_Titel

Research and Development (SCOReD), 2009 IEEE Student Conference on

Conference_Location

UPM Serdang

Print_ISBN

978-1-4244-5186-9

Electronic_ISBN

978-1-4244-5187-6

Type

conf

DOI

10.1109/SCORED.2009.5443345

Filename

5443345