Journal
COMPUTERS & SECURITY
Volume 70, Issue -, Pages 238-254Publisher
ELSEVIER ADVANCED TECHNOLOGY
DOI: 10.1016/j.cose.2017.05.009
Keywords
Network flows; Flow-based intrusion detection; Flow-based datasets; Attack detection; Machine learning
Categories
Ask authors/readers for more resources
Flow-based intrusion detection is an innovative way of detecting intrusions in high-speed networks. Flow-based intrusion detection only inspects the packet header and does not analyze the packet payload. This paper provides a comprehensive survey of current state of the art in flow-based intrusion detection. It also describes the available flow-based datasets used for evaluation of flow-based intrusion detection systems. The paper proposes a taxonomy for flow-based intrusion detection systems on the basis of the technique used for detection of maliciousness in flow records. We review the architecture and evaluation results of available flow-based intrusion detection systems. We also identify important research challenges for future research in the area of flow-based intrusion detection. (C) 2017 Elsevier Ltd. All rights reserved.
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available