Skip to main content
Journal of Big Data

Table 5 Reduction CICIDS2017 feature set

From: Cyberattack detection in wireless sensor networks using a hybrid feature reduction technique with AI and machine learning methods

Set of 39 CICIDS2017 reduced features

URG_Flag_Count

Fwd_Packet_Length_Min

Bwd_Packet_Length_Max

Bwd_Packet_Length_Mean

FIN_Flag_Count

Idle_Std

Init_Win_bytes_backward

Down/Up_Ratio

Packet_Length_Mean

Idle_Max

Idle_Mean

Fwd_IAT_Std

Min_Packet_Length

Flow_IAT_Mean

Max_Packet_Length

Bwd_Packet_Length_Std

Fwd_IAT_Mean

Average_Packet_Size

Fwd_PSH_Flags

Fwd_IAT_Total

Flow_IAT_Max

Flow_IAT_Std

Fwd_IAT_Max

Fwd_Packet_Length_Mean

Destination Port

Packet_Length_Std

Avg_Fwd_Segment_Size

Fwd_Packet_Length_Max

ACK_Flag_Count

Packet_Length_Variance

Idle_Min

PSH_Flag_Count

Flow Duration

Bwd_IAT_Max

Avg_Bwd_Segment_Size

Bwd_Packet_Length_Min

Flow_Packets/s

SYN_Flag_Count

Bwd_IAT_Std

  1. At N = Normal, B = Bot, BF = Brute Force, DD = DDoS, DGE = DoS Golden-Eye, DH = DoS Hulk
  2. FP = FTP patator, HB = Heart Bleed, I = Infilteration, PS = PortScan, S = SQL
  3. SP = SSH Patator, X = XSS, DSHT = DoS SlowHttpTest, DS = DoS Slowloris
Back to article page