| 审计系统中基于数据挖掘的关联规则自动发现技术研究 |
| |
| 引用本文: | 陈世强,蔡超. 审计系统中基于数据挖掘的关联规则自动发现技术研究[J]. 计算机应用与软件, 2007, 24(1): 172-174 |
| |
| 作者姓名: | 陈世强 蔡超 |
| |
| 作者单位: | 湖北民族学院计算机科学系,湖北,恩施,445000;贵州大学计算机软件与理论研究所,贵州,贵阳,550025;贵州大学计算机软件与理论研究所,贵州,贵阳,550025 |
| |
| 摘 要: | 在网络安全审计系统中引进数据挖掘技术,将Agent和分布式挖掘模式相结合对网络主机安全事件进行挖掘,并采用经典的Apriori关联性分析算法实现网络主机安全事件的相关性分析,根据分析结果来找出导致安全事件的原因.多次试验结果表明,该方法有效提高了报警事件的准确率.
|
| 关 键 词: | 审计系统 分布式数据挖掘 Agent Aprior算法 相关性分析 |
| 修稿时间: | 2005-06-21 |
RESEARCH OF AUTOMATIC DISCOVERY BASED ON MINING ASSOCIATION RULES IN AUDIT SYSTEM |
| |
| Chen Shiqiang,Cai Chao. RESEARCH OF AUTOMATIC DISCOVERY BASED ON MINING ASSOCIATION RULES IN AUDIT SYSTEM[J]. Computer Applications and Software, 2007, 24(1): 172-174 |
| |
| Authors: | Chen Shiqiang Cai Chao |
| |
| Affiliation: | 1, Department of Computer Science, Hubei Institute for Nationalities, Enshi Hubei 445000, China;2,Institute of Computer Science, Guizhou University, Guiyang Guizhou 550025, China |
| |
| Abstract: | In this paper,the technology of data mining is imported into audit system.We adopt distributed data mining model associate with Agent to mine network-hosts security events,use Aprior arithmetic to analyze the association of these events,and can find out the producing causation of security events according as the mining results.After several times of tests,we come to the conclusion:it can improve the veracity of alarming events. |
| |
| Keywords: | Audit system Distributed data mining Agent Aprior arithmetic Association analyzing |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
