2016
DOI: 10.1016/j.eswa.2016.07.036
|View full text |Cite
|
Sign up to set email alerts
|

OCPAD: One class Naive Bayes classifier for payload based anomaly detection

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1

Citation Types

0
40
0
3

Year Published

2018
2018
2023
2023

Publication Types

Select...
5
5

Relationship

0
10

Authors

Journals

citations
Cited by 86 publications
(43 citation statements)
references
References 9 publications
0
40
0
3
Order By: Relevance
“…An independent set of features of the observed traffic like, status flags, protocol, latency, are used to forecast the probability of traffic being normal or otherwise. Being simple and easy to implement an algorithm, various IDSs have employed an NB classifier to identify anomalous traffic [108][109][110][111]. It requires very few samples for training [112] and can classify in both binary and multi-label classification.…”
Section: Naive Bayes (Nb) Classifiermentioning
confidence: 99%
“…An independent set of features of the observed traffic like, status flags, protocol, latency, are used to forecast the probability of traffic being normal or otherwise. Being simple and easy to implement an algorithm, various IDSs have employed an NB classifier to identify anomalous traffic [108][109][110][111]. It requires very few samples for training [112] and can classify in both binary and multi-label classification.…”
Section: Naive Bayes (Nb) Classifiermentioning
confidence: 99%
“…(Pimentel et al, 2014;Einarsdóttir et al, 2016;Kafkas and Montaldi, 2018). Therefore, in order to evaluate the performance of the classifiers, the recall of the normal class is commonly maximized (Swarnkar and Hubballi, 2016;Luca et al, 2016). Formally, the training set is generated only from P (x|C = N ).…”
Section: Novelty Detectionmentioning
confidence: 99%
“…McPAD [29] detects HTTP attacks using multiple one-class SVMs, whose outputs are combined to make a final prediction. Recently, Swarnkar [30] adopted a one-class Multinomial Naive Bayes classifier and used likelihood of each short sequences occurrence in payloads of known benign packets as a measure to derive the degree of maliciousness of a packet.…”
Section: Constant Detectionmentioning
confidence: 99%