A novel rule-based Intrusion Detection System using data mining

Author

Li, Lei ; Yang, De-Zhang ; Shen, Fang-Cheng

Author_Institution

Sch. of Autom., Nanjing Univ. of Posts & Telecommun., Nanjing, China

Volume

6

fYear

2010

fDate

9-11 July 2010

Firstpage

169

Lastpage

172

Abstract

Network security is becoming an increasingly important issue, since the rapid development of the Internet. Network Intrusion Detection System (IDS), as the main security defending technique, is widely used against such malicious attacks. Data mining and machine learning technology has been extensively applied in network intrusion detection and prevention systems by discovering user behavior patterns from the network traffic data. Association rules and sequence rules are the main technique of data mining for intrusion detection. Considering the classical Apriori algorithm with bottleneck of frequent itemsets mining, we propose a Length-Decreasing Support to detect intrusion based on data mining, which is an improved Apriori algorithm. Experiment results indicate that the proposed method is efficient.

Keywords

Internet; data mining; learning (artificial intelligence); security of data; IDS; data mining; machine learning technology; network intrusion detection system; network security; network traffic data; Data mining; Educational institutions; Itemsets; Association Rules; Data Mining; Intrusion Detection; Length-Decreasing Support; Rule-based;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on

Conference_Location

Chengdu

Print_ISBN

978-1-4244-5537-9

Type

conf

DOI

10.1109/ICCSIT.2010.5563714

Filename

5563714