Title :
Associating IDS Alerts by an Improved Apriori Algorithm
Author :
Taihua, Wang ; Fan, Guo
Author_Institution :
Sch. of Comput. & Inf. Eng., Jiangxi Normal Univ., Nanchang, China
Abstract :
Among a large number of association rule mining algorithms, Apriori algorithm is the most classic one, but the Apriori algorithm has three deficiencies, namely: the need for scanning databases many times, generating a large number of Candidate Anthology, as well as frequent itemsets iteratively. The paper presents a method that solves the maximal frequent itemsets through one intersection operation. The degree of support is obtained through the times of intersection without having to scan the transaction database, by numbering some of the properties to reduce memory space and search the candidate set list easily, thereby enhancing the efficiency of the algorithm. Finally, it can generate association rules for Intrusion Detection System. Experimental results show that the optimized algorithm can effectively improve the efficiency of mining association rules.
Keywords :
data mining; pattern recognition; search problems; security of data; transaction processing; IDS alert association; apriori algorithm; association rule mining algorithm; candidate anthology; candidate set list searching; database scanning; intersection operation; intrusion detection system; maximal frequent itemsets; memory space reduction; transaction database; Association rules; Data engineering; Data mining; Data security; Intrusion detection; Itemsets; Iterative algorithms; Partitioning algorithms; Space technology; Transaction databases; Apriori algorithm; association rules; data mining; itemsets;
Conference_Titel :
Intelligent Information Technology and Security Informatics (IITSI), 2010 Third International Symposium on
Conference_Location :
Jinggangshan
Print_ISBN :
978-1-4244-6730-3
Electronic_ISBN :
978-1-4244-6743-3
DOI :
10.1109/IITSI.2010.47
