Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system

Min Feng Wang; Yen Ching Wu; Meng Feng Tsai

doi:10.1109/WAINA.2008.144

Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system

Min Feng Wang, Yen Ching Wu, Meng Feng Tsai

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

9 Scopus citations

Abstract

In this paper we proposed a weighted suffix tree and find out it can improve the Intrusion Detection System (IDS). We firstly focus on the analysis of computer kernel system call, and discover some meaningful information from the unorganized system call sequences. We design a weighted suffix tree algorithm which derives from the concept of suffix tree algorithm for string matching, which then allows to mine the frequent episodes in order to get ordered frequent patterns. We therefore apply these rules to detect malicious attacks, and it shows our IDS still has a good ability to detect intrusion when we use fewer rules.

Original language	English
Title of host publication	Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008
Pages	1246-1252
Number of pages	7
DOIs	https://doi.org/10.1109/WAINA.2008.144
State	Published - 2008
Event	22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008 - Gino-wan, Okinawa, Japan Duration: 25 Mar 2008 → 28 Mar 2008

Publication series

Name	Proceedings - International Conference on Advanced Information Networking and Applications, AINA
ISSN (Print)	1550-445X

Conference

Conference	22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008
Country/Territory	Japan
City	Gino-wan, Okinawa
Period	25/03/08 → 28/03/08

Access to Document

10.1109/WAINA.2008.144

Cite this

Wang, M. F., Wu, Y. C., & Tsai, M. F. (2008). Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system. In Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008 (pp. 1246-1252). Article 4483090 (Proceedings - International Conference on Advanced Information Networking and Applications, AINA). https://doi.org/10.1109/WAINA.2008.144

Wang, Min Feng ; Wu, Yen Ching ; Tsai, Meng Feng. / Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system. Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008. 2008. pp. 1246-1252 (Proceedings - International Conference on Advanced Information Networking and Applications, AINA).

@inproceedings{df3b4f23f1954fa49142642faf59646b,

title = "Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system",

abstract = "In this paper we proposed a weighted suffix tree and find out it can improve the Intrusion Detection System (IDS). We firstly focus on the analysis of computer kernel system call, and discover some meaningful information from the unorganized system call sequences. We design a weighted suffix tree algorithm which derives from the concept of suffix tree algorithm for string matching, which then allows to mine the frequent episodes in order to get ordered frequent patterns. We therefore apply these rules to detect malicious attacks, and it shows our IDS still has a good ability to detect intrusion when we use fewer rules.",

author = "Wang, {Min Feng} and Wu, {Yen Ching} and Tsai, {Meng Feng}",

year = "2008",

doi = "10.1109/WAINA.2008.144",

language = "???core.languages.en_GB???",

isbn = "0769530966",

series = "Proceedings - International Conference on Advanced Information Networking and Applications, AINA",

pages = "1246--1252",

booktitle = "Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008",

note = "22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008 ; Conference date: 25-03-2008 Through 28-03-2008",

}

Wang, MF, Wu, YC & Tsai, MF 2008, Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system. in Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008., 4483090, Proceedings - International Conference on Advanced Information Networking and Applications, AINA, pp. 1246-1252, 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008, Gino-wan, Okinawa, Japan, 25/03/08. https://doi.org/10.1109/WAINA.2008.144

Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system. / Wang, Min Feng; Wu, Yen Ching; Tsai, Meng Feng.
Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008. 2008. p. 1246-1252 4483090 (Proceedings - International Conference on Advanced Information Networking and Applications, AINA).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system

AU - Wang, Min Feng

AU - Wu, Yen Ching

AU - Tsai, Meng Feng

PY - 2008

Y1 - 2008

N2 - In this paper we proposed a weighted suffix tree and find out it can improve the Intrusion Detection System (IDS). We firstly focus on the analysis of computer kernel system call, and discover some meaningful information from the unorganized system call sequences. We design a weighted suffix tree algorithm which derives from the concept of suffix tree algorithm for string matching, which then allows to mine the frequent episodes in order to get ordered frequent patterns. We therefore apply these rules to detect malicious attacks, and it shows our IDS still has a good ability to detect intrusion when we use fewer rules.

AB - In this paper we proposed a weighted suffix tree and find out it can improve the Intrusion Detection System (IDS). We firstly focus on the analysis of computer kernel system call, and discover some meaningful information from the unorganized system call sequences. We design a weighted suffix tree algorithm which derives from the concept of suffix tree algorithm for string matching, which then allows to mine the frequent episodes in order to get ordered frequent patterns. We therefore apply these rules to detect malicious attacks, and it shows our IDS still has a good ability to detect intrusion when we use fewer rules.

UR - http://www.scopus.com/inward/record.url?scp=50249123392&partnerID=8YFLogxK

U2 - 10.1109/WAINA.2008.144

DO - 10.1109/WAINA.2008.144

M3 - 會議論文篇章

AN - SCOPUS:50249123392

SN - 0769530966

SN - 9780769530963

T3 - Proceedings - International Conference on Advanced Information Networking and Applications, AINA

SP - 1246

EP - 1252

BT - Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008

T2 - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008

Y2 - 25 March 2008 through 28 March 2008

ER -

Wang MF, Wu YC, Tsai MF. Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system. In Proceedings - 22nd International Conference on Advanced Information Networking and Applications Workshops/Symposia, AINA 2008. 2008. p. 1246-1252. 4483090. (Proceedings - International Conference on Advanced Information Networking and Applications, AINA). doi: 10.1109/WAINA.2008.144

Exploiting frequent episodes in weighted suffix tree to improve intrusion detection system

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this