A Labeled Data Set for Flow-Based Intrusion Detection

14 years 6 months ago

Download wwwhome.cs.utwente.nl

Abstract. Flow-based intrusion detection has recently become a promising security mechanism in high speed networks (1-10 Gbps). Despite the richness in contributions in this ﬁeld, benchmarking of ﬂow-based IDS is still an open issue. In this paper, we propose the ﬁrst publicly available, labeled data set for ﬂowbased intrusion detection. The data set aims to be realistic, i.e., representative of real trafﬁc and complete from a labeling perspective. Our goal is to provide such enriched data set for tuning, training and evaluating ID systems. Our setup is based on a honeypot running widely deployed services and directly connected to the Internet, ensuring attack-exposure. The ﬁnal data set consists of 14.2M ﬂows and more than 98% of them has been labeled.

Anna Sperotto, Ramin Sadre, Frank van Vliet, Aiko

Real-time Traffic

Computer Networks | Data Set | Flow-based Intrusion Detection | Intrusion Detection | IPOM 2009 |

claim paper

Post Info
More Details (n/a)

Added	26 May 2010
Updated	26 May 2010
Type	Conference
Year	2009
Where	IPOM
Authors	Anna Sperotto, Ramin Sadre, Frank van Vliet, Aiko Pras

Comments (0)

Sciweavers

A Labeled Data Set for Flow-Based Intrusion Detection

Computer Networks | Data Set | Flow-based Intrusion Detection | Intrusion Detection | IPOM 2009 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers