[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bro
Subject:    Re: [Bro] Regarding feature extraction from TCPDUMP file
From:       Vern Paxson <vern () icir ! org>
Date:       2012-01-04 17:50:02
Message-ID: 20120104175002.202372C4004 () rock ! ICSI ! Berkeley ! EDU
[Download RAW message or body]

>  I am Rishikesh Sahay. I am working on the intrusion Detection system. I
> would like to extract the 41 features based on the DARPA 1999 data set like
> KDD Cup 1999 data set.

Note, it is very well recognized in the intrusion detection research
community that the DARPA dataset (and even more so the KDD Cup dataset
dervied from it) is useless for assessing detection algorithms.  In some
ways, it's worse than useless because it's an "attractive nuisance", i.e.,
it's tempting to use it because of its ready availability.  So you really
should refrain from trying to base any sort of meaningful research on it.

		Vern

[prev in list] [next in list] [prev in thread] [next in thread]