Article ID | Journal | Published Year | Pages | File Type |
---|---|---|---|---|
6884084 | Computers & Security | 2018 | 31 Pages |
Abstract
The evaluation of algorithms and techniques to implement intrusion detection systems heavily rely on the existence of well designed datasets. In the last years, a lot of efforts have been done toward building these datasets. Yet, there is still room to improve. In this paper, a comprehensive review of existing datasets is first done, making emphasis on their main shortcomings. Then, we present a new dataset that is built with real traffic and up-to-date attacks. The main advantage of this dataset over previous ones is its usefulness for evaluating IDSs that consider long-term evolution and traffic periodicity. Models that consider differences in daytime/nighttime or weekdays/weekends can also be trained and evaluated with it. We discuss all the requirements for a modern IDS evaluation dataset and analyze how the one presented here meets the different needs.
Related Topics
Physical Sciences and Engineering
Computer Science
Computer Networks and Communications
Authors
Gabriel Maciá-Fernández, José Camacho, Roberto Magán-Carrión, Pedro GarcÃa-Teodoro, Roberto Therón,