A statistical model for network data analysis: KDD CUP 99' data evaluation and its comparing with MIT Lincoln Laboratory network data

Jaeik Cho; Changhoon Lee; Sanghyun Cho; Jung Hwan Song; Jongin Lim; Jongsub Moon

doi:10.1016/j.simpat.2009.09.003

A statistical model for network data analysis: KDD CUP 99' data evaluation and its comparing with MIT Lincoln Laboratory network data

Jaeik Cho, Changhoon Lee, Sanghyun Cho, Jung Hwan Song, Jongin Lim, Jongsub Moon

Graduate School of Information Study

Research output: Contribution to journal › Article › peer-review

6 Citations (Scopus)

Abstract

In network data analysis, research about how accurate the estimation model represents the universe is inevitable. As the speed of the network increases, so will the attacking methods on future generation communication network. To correspond to these wide variety of attacks, intrusion detection systems and intrusion prevention systems also need a wide variety of counter measures. As a result, an effective method to compare and analyze network data is needed. These methods are needed because when a method to compare and analyze network data is effective, the verification of intrusion detection systems and intrusion prevention systems can be trusted. In this paper, we use extractable standard protocol information of network data to compare and analyze the data of MIT Lincoln Lab with the data of KDD CUP 99 (modeled from Lincoln Lab). Correspondence Analysis and statistical analyzing method is used for comparing data.

Original language	English
Pages (from-to)	431-435
Number of pages	5
Journal	Simulation Modelling Practice and Theory
Volume	18
Issue number	4
DOIs	https://doi.org/10.1016/j.simpat.2009.09.003
Publication status	Published - 2010 Apr

Keywords

Data set
Intrusion detection
KDD CUP 99
Network data modeling
Network data quantification

ASJC Scopus subject areas

Software
Modelling and Simulation
Hardware and Architecture

Access to Document

10.1016/j.simpat.2009.09.003

Fingerprint Dive into the research topics of 'A statistical model for network data analysis: KDD CUP 99' data evaluation and its comparing with MIT Lincoln Laboratory network data'. Together they form a unique fingerprint.

Cite this

A statistical model for network data analysis : KDD CUP 99' data evaluation and its comparing with MIT Lincoln Laboratory network data. / Cho, Jaeik; Lee, Changhoon; Cho, Sanghyun; Song, Jung Hwan; Lim, Jongin; Moon, Jongsub.

In: Simulation Modelling Practice and Theory, Vol. 18, No. 4, 04.2010, p. 431-435.

Research output: Contribution to journal › Article › peer-review

@article{42df62919ea8425680e6ad3eacef8631,

title = "A statistical model for network data analysis: KDD CUP 99' data evaluation and its comparing with MIT Lincoln Laboratory network data",

abstract = "In network data analysis, research about how accurate the estimation model represents the universe is inevitable. As the speed of the network increases, so will the attacking methods on future generation communication network. To correspond to these wide variety of attacks, intrusion detection systems and intrusion prevention systems also need a wide variety of counter measures. As a result, an effective method to compare and analyze network data is needed. These methods are needed because when a method to compare and analyze network data is effective, the verification of intrusion detection systems and intrusion prevention systems can be trusted. In this paper, we use extractable standard protocol information of network data to compare and analyze the data of MIT Lincoln Lab with the data of KDD CUP 99 (modeled from Lincoln Lab). Correspondence Analysis and statistical analyzing method is used for comparing data.",

keywords = "Data set, Intrusion detection, KDD CUP 99, Network data modeling, Network data quantification",

author = "Jaeik Cho and Changhoon Lee and Sanghyun Cho and Song, {Jung Hwan} and Jongin Lim and Jongsub Moon",

year = "2010",

month = apr,

doi = "10.1016/j.simpat.2009.09.003",

language = "English",

volume = "18",

pages = "431--435",

journal = "Simulation Modelling Practice and Theory",

issn = "1569-190X",

publisher = "Elsevier",

number = "4",

}

TY - JOUR

T1 - A statistical model for network data analysis

T2 - KDD CUP 99' data evaluation and its comparing with MIT Lincoln Laboratory network data

AU - Cho, Jaeik

AU - Lee, Changhoon

AU - Cho, Sanghyun

AU - Song, Jung Hwan

AU - Lim, Jongin

AU - Moon, Jongsub

PY - 2010/4

Y1 - 2010/4

N2 - In network data analysis, research about how accurate the estimation model represents the universe is inevitable. As the speed of the network increases, so will the attacking methods on future generation communication network. To correspond to these wide variety of attacks, intrusion detection systems and intrusion prevention systems also need a wide variety of counter measures. As a result, an effective method to compare and analyze network data is needed. These methods are needed because when a method to compare and analyze network data is effective, the verification of intrusion detection systems and intrusion prevention systems can be trusted. In this paper, we use extractable standard protocol information of network data to compare and analyze the data of MIT Lincoln Lab with the data of KDD CUP 99 (modeled from Lincoln Lab). Correspondence Analysis and statistical analyzing method is used for comparing data.

AB - In network data analysis, research about how accurate the estimation model represents the universe is inevitable. As the speed of the network increases, so will the attacking methods on future generation communication network. To correspond to these wide variety of attacks, intrusion detection systems and intrusion prevention systems also need a wide variety of counter measures. As a result, an effective method to compare and analyze network data is needed. These methods are needed because when a method to compare and analyze network data is effective, the verification of intrusion detection systems and intrusion prevention systems can be trusted. In this paper, we use extractable standard protocol information of network data to compare and analyze the data of MIT Lincoln Lab with the data of KDD CUP 99 (modeled from Lincoln Lab). Correspondence Analysis and statistical analyzing method is used for comparing data.

KW - Data set

KW - Intrusion detection

KW - KDD CUP 99

KW - Network data modeling

KW - Network data quantification

UR - http://www.scopus.com/inward/record.url?scp=76949102098&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=76949102098&partnerID=8YFLogxK

U2 - 10.1016/j.simpat.2009.09.003

DO - 10.1016/j.simpat.2009.09.003

M3 - Article

AN - SCOPUS:76949102098

VL - 18

SP - 431

EP - 435

JO - Simulation Modelling Practice and Theory

JF - Simulation Modelling Practice and Theory

SN - 1569-190X

IS - 4

ER -