Home|Journals|Articles by Year|Audio Abstracts
 

Original Article

JJCIT. 2018; 4(3): 175-184


Feature Pruning Method for Hidden Markov Models-based anomaly detection: A Comparison of Performance

Sulaiman Alhaidari, Mohamed Zohdy.




Abstract

Selecting effective and significant features for Hidden Markov Model (HMM) is a very important for detecting anomalies in database. The goal of this research is to identify the most salient and important features in building HMM. In order to improve the performance of HMM, an approach of feature pruning is proposed. This approach is effective in detecting and classifying anomalies, very simple and easy implemented. Also, it is able to reduce the computational complexity and time without compromising the model accuracy. In this work, the proposed approach is applied to NSL-KDD (the new version of KDD Cup 99), DDoS, IoTPOT and UNSW_NB15 data sets. Those data sets is used to perform a comparative study that involves full Feature set and a subset of significant features. The experimental results shows better performance in terms of efficiency and provides higher accuracy and lower false positive rate with reduced number of features and eliminating irrelevant redundant or noisy features.

Key words: Hidden Markov Models; NSLKDD; DDoS; UNSW_NB15;IoTPOT.






Full-text options


Share this Article


Online Article Submission
• ejmanager.com




ejPort - eJManager.com
Refer & Earn
JournalList
About BiblioMed
License Information
Terms & Conditions
Privacy Policy
Contact Us

The articles in Bibliomed are open access articles licensed under Creative Commons Attribution 4.0 International License (CC BY), which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/.