基于数据挖掘的入侵检测系统检测引擎的设计

• Original Articles • Previous Articles Next Articles

A data mining based design for the detection engine of the intrusion detection system

Lü Xi-xiang;YANG Bo;PEI Chang-xin;SU Xiao-long

(State Key Lab. of Integrated Service Networks, Xidian Univ., Xi'an 710071, China)

Received:1900-01-01 Revised:1900-01-01 Online:2004-08-20 Published:2004-08-20

Abstract

Abstract: We discuss our research in developing the detection engine of the intrusion detection system. The key ideas are to combine the slide window into the data mining technique to design the base detection engine which is the essential share of the meta detection engine. In addition, Apriori, a kind of data mining algorithm, is improved to mine network data. The improved algorithm does not scan all items in database and only links the items in the same list, so the detection efficiency is improved greatly. Also, other key details in IDS are put forward.

Key words: intrusion detection system, data mining, network security

CLC Number:

TN915.08

Lü Xi-xiang;YANG Bo;PEI Chang-xin;SU Xiao-long.

A data mining based design for the detection engine of the intrusion detection system

[J].J4, 2004, 31(4): 574-580.

[1]	CHAI Yanna,LI Kunlun,SONG Huansheng. On the security of the intrusion detection system in smart vehicles [J]. Journal of Xidian University, 2021, 48(3): 31-39.
[2]	LIU Huayuan,SU Yunfei,LI Ruilin,TANG Chaojing. Structure-statebased graybox Fuzzing technique [J]. Journal of Xidian University, 2021, 48(1): 117-123.
[3]	LI Teng,CAO Shijie,YIN Siwei,WEI Dawei,MA Xindi,MA Jianfeng. Optimal method for the generation of the attack path based on the Q-learning decision [J]. Journal of Xidian University, 2021, 48(1): 160-167.
[4]	YANG Hongyu,ZENG Renyun. Method for assessment of network security situation with deep learning [J]. Journal of Xidian University, 2021, 48(1): 183-190.
[5]	YANG Hongyu,ZHANG Xugao. Network security situation adaptive prediction model [J]. Journal of Xidian University, 2020, 47(3): 14-22.
[6]	YANG Baowang. Low-rate-denial-of-service attack detection by symbolic dynamics method [J]. Journal of Xidian University, 2018, 45(1): 140-144.
[7]	LIANG Hongquan;WU Wei. Secure link status routing protocol based on node trustworthiness [J]. Journal of Xidian University, 2016, 43(5): 121-127.
[8]	TANG Xing;QUAN Yining;SONG Jianfeng;DENG Kai;ZHU Hai;MIAO Qiguang. Novel algorithm for predicting personalized retweet behavior [J]. Journal of Xidian University, 2016, 43(4): 51-56+62.
[9]	WANG Jindong;YU Dingkun;ZHANG Hengwei;WANG Na. Active defense strategy selection based on the static Bayesian game [J]. J4, 2016, 43(1): 144-150.
[10]	WANG Zhiqiang;ZHANG Yuqing;LIU Qixu;HUANG Tingpei. Algorithm for discovering SNMP protocol vulnerability [J]. J4, 2015, 42(4): 20-26+40.
[11]	GUO Jingjing;MA Jianfeng. Trust recommendation algorithm for the virtual community based Internet of Things(IoT) [J]. J4, 2015, 42(2): 52-57+179.
[12]	LI Longying;LI Jinku;MA Jianfeng;JIANG Qi. Comprehensive analysis of real-time alerts with attack strategy graphs [J]. J4, 2014, 41(5): 84-90.
[13]	WANG Yichuan;MA Jianfeng;LU Di;ZHANG Liumei;MENG Xianjia. Cloud droplets freezing attack in cloud computing [J]. J4, 2014, 41(3): 116-122.
[14]	GUO Jianghong;MA Jianfeng;ZHANG Liumei;LU Di. Efficient encrypted data aggregation scheme for wireless sensor networks [J]. J4, 2013, 40(3): 95-101+120.
[15]	DU Zhi-qiang;SHEN Yu-long;MA Jian-feng;ZHOU Li-hua. Practical broadcast authentication protocol for sensor networks [J]. J4, 2010, 37(2): 305-310+325.

A data mining based design for the detection engine of the intrusion detection system

Like

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Metrics

Comments

Recommended 0