An Implementation of Mining Prototype System for Network Attack Analysis
作者:
DOI: 10.3745/KIPSTC.2004.11C.4.455
关键词: Computer science 、 Network attack 、 Robust random early detection 、 Association rule learning 、 Communications protocol 、 Intrusion detection system 、 Internet Control Message Protocol 、 Schema (genetic algorithms) 、 Data mining 、 The Internet
摘要: Network attacks are various types with development of internet and a new types. The existing intrusion detection systems need lot efforts costs in order to detect respond unknown or modified because based on signatures known attacks. In this paper, we present design implementation for mining prototype system predict through network protocol attributes analysis. analyze protocols, use the association rule frequent episode. collected protocols storing schema TCP, UDP, ICMP integrated type. We generating rules that can Our aspect is useful response against as extra tool.
koreascience.or.kr参考文章(6)
C. Sinclair, L. Pierce, S. Matzner, An application of machine learning to network intrusion detection annual computer security applications conference. pp. 371- 377 ,(1999) , 10.1109/CSAC.1999.816048
C. Warrender, S. Forrest, B. Pearlmutter, Detecting intrusions using system calls: alternative data models ieee symposium on security and privacy. pp. 133- 145 ,(1999) , 10.1109/SECPRI.1999.766910
F. Cuppens, A. Miege, Alert correlation in a cooperative intrusion detection framework ieee symposium on security and privacy. pp. 202- 215 ,(2002) , 10.1109/SECPRI.2002.1004372
Rakesh Agrawal, Tomasz Imieliński, Arun Swami, Mining association rules between sets of items in large databases Proceedings of the 1993 ACM SIGMOD international conference on Management of data - SIGMOD '93. ,vol. 22, pp. 207- 216 ,(1993) , 10.1145/170035.170072
S.J. Stolfo, Wei Fan, Wenke Lee, A. Prodromidis, P.K. Chan, Cost-based modeling for fraud and intrusion detection: results from the JAM project darpa information survivability conference and exposition. ,vol. 2, pp. 130- 144 ,(2000) , 10.1109/DISCEX.2000.821515
S. Forrest, S.A. Hofmeyr, A. Somayaji, T.A. Longstaff, A Sense of Self for Unix Processes Scientific Programming. ,(1996) , 10.1109/SECPRI.1996.502675