Fuzzy frequent episodes for real-time intrusion detection

被引：0

作者：

Luo, JX ^{[1
]}

Bridges, SM ^{[1
]}

Vaughn, RB ^{[1
]}

机构：

[1] Mississippi State Univ, Dept Comp Sci, Mississippi State, MS 39762 USA

来源：

10TH IEEE INTERNATIONAL CONFERENCE ON FUZZY SYSTEMS, VOLS 1-3: MEETING THE GRAND CHALLENGE: MACHINES THAT SERVE PEOPLE | 2001年

关键词：

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Data mining methods Including association rule mining and frequent episode mining have been applied to the intrusion detection problem. In other work, we have introduced modifications of these methods that mine fuzzy association rules and fuzzy frequent episodes and have described off-line methods that utilize these fuzzy methods for anomaly detection from audit data. In this paper we describe another extension that uses fuzzy frequent episodes for near real-time intrusion detection. We first define fuzzy frequent episodes and then describe experiments that explore their applicability for real-time intrusion detection. Experimental results indicate that fuzzy frequent episodes can provide effective approximate anomaly detection.

引用

页码：368 / 371

页数：4

共 8 条

[1]

Agrawal R., 1996, Advances in Knowledge Discovery and Data Mining, P307

[2]

Chan Man Kuok, 1998, SIGMOD Record, V27, P41, DOI 10.1145/273244.273257

[3]

DICKERSON JE, P NAIFIPS 2000, P301

[4]

Lee W, 1998, PROCEEDINGS OF THE SEVENTH USENIX SECURITY SYMPOSIUM, P79

[5]

Luo JX, 2000, INT J INTELL SYST, V15, P687, DOI 10.1002/1098-111X(200008)15:8<687::AID-INT1>3.0.CO

[6]

2-X

[7]

MANNILA H, 1996, P 2 INT C KNOWL DISC, P146

[8]

Teng H. S., 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy (Cat. No.90CH2884-5), P278, DOI 10.1109/RISP.1990.63857

← 1 →