Building Real-Time Network Intrusion Detection System Based on Parallel Time-Series Mining Techniques

Building Real-Time Network Intrusion Detection System Based on Parallel Time-Series Mining Techniques

下载PDF

导出

摘要 A new real-time model based on parallel time-series mining is proposed to improve the accuracy and efficiency of the network intrusion detection systems. In this model, multidimensional dataset is constructed to describe network events, and sliding window updating algorithm is used to maintain network stream. Moreover, parallel frequent patterns and frequent episodes mining algorithms are applied to implement parallel time-series mining engineer which can intelligently generate rules to distinguish intrusions from normal activities. Analysis and study on the basis of DAWNING 3000 indicate that this parallel time-series mining-based model provides a more accurate and efficient way to building real-time NIDS. A new real-time model based on parallel time-series mining is proposed to improve the accuracy and efficiency of the network intrusion detection systems. In this model, multidimensional dataset is constructed to describe network events, and sliding window updating algorithm is used to maintain network stream. Moreover, parallel frequent patterns and frequent episodes mining algorithms are applied to implement parallel time-series mining engineer which can intelligently generate rules to distinguish intrusions from normal activities. Analysis and study on the basis of DAWNING 3000 indicate that this parallel time-series mining-based model provides a more accurate and efficient way to building real-time NIDS.

作者赵峰李庆华

机构地区 School of Computer Science and Technology

出处《Journal of Southwest Jiaotong University(English Edition)》 2005年第1期11-17,共7页 西南交通大学学报（英文版）

基金 TheNationalNaturalScienceFoundationofChina(No.60273075).

关键词 Intrusion detection Time-series mining Sliding window Parallel algorithm Intrusion detection Time-series mining Sliding window Parallel algorithm

分类号 TN915.02 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献6

1Datar M,Gionis A,Indyk P,et al.Maintaining stream statistics over sliding window[].In: Eppstein D Demaine E ed ACM-SIAM Symposium on Discrete Algorithms ( SODA) San Francisco California New York: ACM/SIAM Press.2002
2Lian Y F,Dai Y X,Wang H.Anomaly detection of user behaviors based on profile mining[].Chinese Journal of Computers.2002
3Lin Q,Agrawal D,Abbadi E.Supporting sliding window queries for continuous data streams[].In: Aggrawal CBeard K ed Proceedings of the th Conference on Scientific and Statistical Database Management( SSDBM’ ) Cambridge Massachusetts New York:Springer Verlag GmbH.2003
4Lee W,Stoifo S J.Data mining approaches for intrusion detection[].In: Adams C Balenson D ed Proceedings of the th USENIX Security Symposium San Antonio Texas: USENIX publishing.1998
5LEE W,Stoifo S J,Mok K W.A data mining framework for building intrusion detection models[].In: Warrender C Forrest S ed Proceedings of the IEEE Symposium on Security and Privacy Oakland Los Alamitos California: IEEE Computer Society Press.1999
6Guha S,Koudas N.Approximating a data stream for querying and estimation: algorithms and performance evaluation[].In: Proceedings of the th ICDE Conference San Jose CA San Jose: IEEE Computer Society.2002

1NIE Guo-liang LU Zheng-ding.Dynamically Computing Approximate Frequency Counts in Sliding Window over Data Stream[J].Wuhan University Journal of Natural Sciences,2006,11(1):283-288. 被引量：1
2Shefeng Yuan.Develop and Implement of Real-time Network Monitoring Software based on C/S[J].International Journal of Technology Management,2015(1):62-64.
3王旭仁,毕学尧,曹爱娟,李雪莹,许榕生.对Web数据的安全监控研究[J].计算机科学,2004,31(B09):213-216.
4霍尼韦尔获得USAF最高安全认证[J].A&S（安全&自动化）,2008(1):32-32.
5DONG Yihong,ZHUANG Yueting,TAI Xiaoying.A Novel Incremental Mining Algorithm of Frequent Patterns for Web Usage Mining[J].Wuhan University Journal of Natural Sciences,2007,12(5):777-782. 被引量：1
6LiXiaoyong,LiuDongxi.An automatic scheme to construct Snort rules from honeypots data[J].Journal of Systems Engineering and Electronics,2005,16(2):466-470. 被引量：1
7YU Yaxin,WANG Guoren,SU Dong,ZHU Xinhua.Linked-Tree: An Aggregate Query Algorithm Based on Sliding Window over Data Stream[J].Wuhan University Journal of Natural Sciences,2006,11(5):1114-1119.
8龙门,夏靖波,王海涛,张子阳.基于改进滑动时窗的在线最小二乘支持向量机[J].计算机应用与软件,2011,28(3):125-127. 被引量：2
9GAO YunLong,PAN JinYan,JI GuoLi,GAO Feng.A time-series modeling method based on the boosting gradient-descent theory[J].Science China(Technological Sciences),2011,54(5):1325-1337. 被引量：5
10YU Ya-xin YANG Xing-hua YU Ge WU Shan-shan.An Indexed Non-Equijoin Algorithm Based on Sliding Windows over Data Streams[J].Wuhan University Journal of Natural Sciences,2006,11(1):294-298.

Journal of Southwest Jiaotong University(English Edition)

2005年第1期

浏览历史

内容加载中请稍等...

Building Real-Time Network Intrusion Detection System Based on Parallel Time-Series Mining Techniques

参考文献6

相关作者

相关机构

相关主题

浏览历史