Title :
Object-oriented Case Representation and Its Application in IDS
Author :
Quan, Qian ; Rui, Zhang ; Hong-Yi, Che
Author_Institution :
Sch. of Comput. Eng. & Sci., Shanghai Univ., Shanghai, China
Abstract :
Case representation is a key issue in case-based reasoning (CBR). This paper introduces a novel object-oriented model to represent cases and applies this technology to intrusion detection system (IDS) in order to solve the over-sensitive alarm problem which remains in most of the commercial IDSs. In this model we try to represent the complex case structural information through class hierarchy. The new method not only overcomes limitations that traditional attribute-value case representation can not represent complex cases, but also combines domain knowledge and case representation through constraint rules. In the aspect of case similarity, we divide it into two categories: the intra- class similarity and the inter-class similarity, which shows more accurate and convenient. The object-oriented case representation has been used in our own IDS product and it plays a quite efficient role in mitigating over-sensitive alarm problems.
Keywords :
case-based reasoning; knowledge representation; object-oriented programming; security of data; alarm problem; attribute-value case representation; case based reasoning; class hierarchy; constraint rules; domain knowledge; interclass similarity; intraclass similarity; intrusion detection system; object-oriented case representation; object-oriented model; structural information; Application software; Computer languages; Encapsulation; Expert systems; Information science; Intrusion detection; Knowledge representation; Object oriented modeling; Psychology; Security; Case-based Reasoning; Intrusion detection; Object oriented case representation;
Conference_Titel :
Computer and Information Science, 2009. ICIS 2009. Eighth IEEE/ACIS International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-0-7695-3641-5
DOI :
10.1109/ICIS.2009.186
