| 审计日志的关联规则挖掘 |
| |
| 引用本文: | 崔国华,侯澄志,洪帆.审计日志的关联规则挖掘[J].华中科技大学学报(自然科学版),2002,30(9):28-30. |
| |
| 作者姓名: | 崔国华 侯澄志 洪帆 |
| |
| 作者单位: | 华中科技大学计算机科学与技术学院 |
| |
| 摘 要: | 研究了在入侵检测系统中利用数据挖掘技术从审计日志中挖掘关联规则的方法,针对现有关联规则算法应用于入侵检测系统引起的问题,提出了利用本质属性限制无趣规则的产生、利用行向量的位运算提高Apriori算法时间性能的一种高效改进算法。该算法不需生成候选频繁集和剪枝操作,避免了因无趣规则引起的大量运算。因而能提高入侵检测系统的效率。
|
| 关 键 词: | 审计日志 计算机安全 入侵检测系统 数据挖掘 关联规则 Apriori算法 ARDBSO算法 网络安全 |
| 文章编号: | 1671-4512(2002)09-0028-03 |
| 修稿时间: | 2002年5月8日 |
The mining of the association rules from auditing data |
| |
| Cui Guohua Hou Chengzhi Hong Fan Prof., College of Computer Sci. & Tech.,Huazhong Univ. of Sci. & Tech.,Wuhan ,China..The mining of the association rules from auditing data[J].JOURNAL OF HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY.NATURE SCIENCE,2002,30(9):28-30. |
| |
| Authors: | Cui Guohua Hou Chengzhi Hong Fan Prof College of Computer Sci & Tech Huazhong Univ of Sci & Tech Wuhan China |
| |
| Affiliation: | Cui Guohua Hou Chengzhi Hong Fan Prof., College of Computer Sci. & Tech.,Huazhong Univ. of Sci. & Tech.,Wuhan 430074,China. |
| |
| Abstract: | An investigation is made of the method for mining the association rules from the auditing log with the data mining technique in an intrusion detecting system. In view of the problems arising from the application of the existing algorithm for the association rules in the intrusion detecting system, a highly efficient algorithm for limiting the generation of rebuff rules and enhancement of the Apriori algorithm time performance using the bit operation of the row vector. With this algorithm, it is not necessary to generate the candidate frequency set and lopping operation, avoiding the large amount of operations due to the rebuff rules. Hence it improves efficiency of the intrusion detecting system. |
| |
| Keywords: | computer security intrusion detection data mining association rules Apriori algorithm ARDBSO algorithm |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
