A Temporal Pattern Mining Based Approach for Intrusion Detection Using Similarity Measure
作者: V. Radhakrishna , P. V. Kumar , V. Janaki
关键词:
摘要: In this paper, the major objective is to identify intrusion using temporal pattern mining. The idea find normal system call patterns and use these abnormal patterns. For finding calls we concept of association reference sequence used obtain satisfying user defined threshold. To patterns, apply our novel procedure which performs only a single database scan. This reduces extra overhead in generating frequent minimizing space complexity. similarity or dissimilarity values proposed measure. results show that approach overcomes disadvantages traditional distance measures.
acm.org
sci-hub.se 参考文章(16)
Guiling Zhang, Applying mining fuzzy association rules to intrusion detection based on sequences of system calls international conference on networking. pp. 826- 835 ,(2005) , 10.1007/11534310_87
A. Jones, Song Li, Temporal signatures for intrusion detection annual computer security applications conference. pp. 252- 261 ,(2001) , 10.1109/ACSAC.2001.991541
Xin Xu, Tao Xie, A Reinforcement Learning Approach for Host-Based Intrusion Detection Using Sequences of System Calls Lecture Notes in Computer Science. pp. 995- 1003 ,(2005) , 10.1007/11538059_103
Shi Pu, Bo Lang, An intrusion detection method based on system call temporal serial analysis international conference on intelligent computing. pp. 656- 666 ,(2007) , 10.1007/978-3-540-74171-8_65
Hongpei Li, Lianli Chang, Xinmei Wang, A Useful Intrusion Detection System Prototype to Monitor Multi-processes Based on System Calls international conference on information and communication security. pp. 441- 450 ,(2001) , 10.1007/3-540-45600-7_48
Kyubum Wee, Sinjae Kim, Construction of finite automata for intrusion detection from system call sequences by genetic algorithms knowledge discovery and data mining. pp. 594- 602 ,(2006) , 10.1007/11731139_69
Asaf Shabtai, Uri Kanonov, Yuval Elovici, Intrusion detection for mobile devices using the knowledge-based, temporal abstraction method Journal of Systems and Software. ,vol. 83, pp. 1524- 1537 ,(2010) , 10.1016/J.JSS.2010.03.046
Alexandr Seleznyov, Oleksiy Mazhelis, Learning temporal patterns for anomaly intrusion detection acm symposium on applied computing. pp. 209- 213 ,(2002) , 10.1145/508791.508836
João B. D. Cabrera, Lundy Lewis, Raman K. Mehra, Detection and classification of intrusions and faults using sequences of system calls international conference on management of data. ,vol. 30, pp. 25- 34 ,(2001) , 10.1145/604264.604269
Xin Xu, Sequential anomaly detection based on temporal-difference learning: Principles, models and case studies soft computing. ,vol. 10, pp. 859- 867 ,(2010) , 10.1016/J.ASOC.2009.10.003