Skip to content
/ FSNID Public

In this reository, we present the code used to generate the results of the paper Feature Selection For Network Intrusion Detection.

0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

c-s-westphal/FSNID

BranchesTags

Repository files navigation

FSNID

Feature Selection for Network Intrusion Detection

This repository contains the code used to generate the results presented in the paper:

Feature Selection for Network Intrusion Detection
[Charles Westphal], et al.
arXiv:2411.11603 To appear in KDD'25.

Table of Contents

Introduction

In this repo, we publish the code used to create the results in Feature Selection for Network Intrusion Detection (FSNID). FSNID, is an information-theoretic filter method that sequentially eliminates features that fail to transfer entropy to the attack vector, as shown in the following schematic.

2ndprojchematic2

This in turn led to us achieving the following main results:

2ndprojbar

Installation

  1. Clone the Repository:

    git clone https://github.com/c-s-westphal/FSNID.git
cd FSNID

  2. Create Virtual Environment:

    python3 -m FSNID_venv venv
source FSNID_venv/bin/activate

  3. Install Required Packages:

    pip install -r requirements.txt

Usage

Run the feature selection and classification script using:

```bash
python main.py --nme DATASET_NAME --selection_method METHOD --model_type MODEL

Arguments

  • --nme: Name of the dataset to use (default: BOTIOT).
  • --selection_method: Feature selection method to use. Choices are fsnid, brown, firefly, lasso, pi (default: fsnid).
  • --model_type: Type of model to evaluate the features with. Only FSNID is designed to be used with all four, other methods should be left to default to MLP. Choices are MLP, LSTM, TCN, GRU (default: MLP).

Datasets

Due to GitHub's file size limitations, the full datasets are not included in this repository. However, the first 5000 rows of the BOTIOT dataset are provided in the /data directory to demonstrate the required format.

For the complete datasets, please visit:

Citation

If you use this code in your research, please cite our paper:

@misc{westphal2024featureselectionnetworkintrusion,
      title={Feature Selection for Network Intrusion Detection}, 
      author={Charles Westphal and Stephen Hailes and Mirco Musolesi},
      year={2024},
      eprint={2411.11603},
      archivePrefix={arXiv},
      primaryClass={cs.LG},
      url={https://arxiv.org/abs/2411.11603}, 
}

About

In this reository, we present the code used to generate the results of the paper Feature Selection For Network Intrusion Detection.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages