Abstract

Abstract:

This paper presents a framework of misuse IDS based on sequential pattern mining. The system can distinguish the order of attack behaviors at the application layer, which belongs to the behavior analysis technique based on protocol analysis, and overcome the limitation of Wenke Lee＇s method, which peerforms statistical analysis against intrusion be haviors at the network layer with the frequent episode algorithm. Experiments indicate that the IDS de scribes attacks more accurately, and it can detect those attacks whose features appear only once.

Key words: data mining, frequent episode, sequential pattern, behavior analysis

[1]	YANG Shi-qi, WU You-xi, GENG Meng, LI Yan. One-off three-way sequential patterns mining [J]. Computer Engineering & Science, 2024, 46(07): 1286-1295.
[2]	ZHAO Yan, MA Hui-fang, WANG Wen-tao, TONG Hai-bin, HE Xiang-chun. A reliable response representation enhanced knowledge tracing method [J]. Computer Engineering & Science, 2024, 46(03): 535-544.
[3]	LEI Xuan, CHENG Guang, ZHANG Yu-jian, GUO Liang, ZHANG Fu-cun. Association analysis of alarm information based on power network situation awareness platform [J]. Computer Engineering & Science, 2023, 45(07): 1197-1208.
[4]	WANG Chen-yu, WEN Hao-min, GUO Sheng-nan, LIN You-fang, WAN Huai-yu, . Multi-task deep spatial-temporal networkfor couriers pick-up arrival time prediction [J]. Computer Engineering & Science, 2023, 45(01): 136-144.
[5]	CHENG Xiao-gang, GUO Ren, ZHOU Chang-li, . A distributed privacy-preserving data mining framework based on rational cryptography [J]. Computer Engineering & Science, 2022, 44(10): 1781-1787.
[6]	WANG Wen-tao, MA Hui-fang, SHU Yue-yu, HE Xiang-chun. Knowledge tracing based on contextualized representation [J]. Computer Engineering & Science, 2022, 44(09): 1693-1701.
[7]	LIU Shi-yuan, LI Yun-chun, CHEN Chen, YANG Hai-long. Architecture combining active & passive performance evaluation methods and its implementation for big data storage [J]. Computer Engineering & Science, 2022, 44(04): 584-593.
[8]	LIU Yun, XIAO Tian. A conditional causality mining algorithm in network log data [J]. Computer Engineering & Science, 2021, 43(09): 1584-1590.
[9]	WEN Kai, XU Meng-meng, ZHANG Xu-hong, . A weighted erasable itemset mining algorithm based on list structure [J]. Computer Engineering & Science, 2021, 43(09): 1676-1683.
[10]	XIONG Zhong-min, WANG Bo, TAO Ran, ZHENG Zong-sheng, CHEN Ming, . An association rule mining reduction algorithm based on determining prime attributes [J]. Computer Engineering & Science, 2021, 43(04): 738-745.
[11]	ZANG Run-qiang, ZUO Mei-yun, GUO Xin-xin. Disease prediction of elderly patients based on Doc2Vec and BiLSTM [J]. Computer Engineering & Science, 2020, 42(12): 2273-2279.
[12]	HE Wang1,2,LIN Guo-yuan1,2. Analysis of cloud server fault data based on improved FP-Growth algorithm [J]. Computer Engineering & Science, 2020, 42(05): 770-775.
[13]	TAN Sheng-xi,JIA Jin-ping,ZHAO Bin,JI Gen-lin. A black hole pattern mining algorithm in dynamic spatial network [J]. Computer Engineering & Science, 2020, 42(02): 325-333.
[14]	HE Deng-ping1,2,3，HE Zong-hao1,2，LI Pei-qiang1,2. A parallelhigh utility itemset mining algorithm based on Spark [J]. Computer Engineering & Science, 2019, 41(10): 1723-1730.
[15]	CHEN Sheng-fa，JIA Rui-yu. An improved K-medoids algorithm #br# based on density weight Canopy [J]. Computer Engineering & Science, 2019, 41(10): 1823-1828.

PDF

Knowledge

Abstract

Cite this article

share this article

Related Articles 15

Recommended Articles

Metrics

Comments