%0 Journal Article
%T Novel anomaly intrusion detection algorithm based on frequent subgraph mining<br>基于频繁子图挖掘的异常入侵检测新方法*
%A LIU Hui
%A WANG Jun-feng
%A SHE Chun-dong
%A <br>刘辉
%A 王俊峰
%A 佘春东
%J 计算机应用研究
%D 2011
%I 
%X To overcome the limitation that off-line learning process is overly dependent upon the amount of training data in traditional anomaly intrusion detection methods, frequent subgraph mining theory is introduced, combining with the unique derivative ability of the directed graph transformed from the system call sequence, can obtain large quantities of derivative patterns via a relatively small scale of training data. Experimental results indicate that the extended pattern set can effectively increase the detecting ability for the unknown behavior. Meanwhile, with the integrated consideration of local and global characteristic in system call sequence, a reasonable method is proposed for constructing the variable-length patterns.
%K anomaly intrusion detection
%K system call sequence
%K frequent subgraph mining
%K derivative pattern<br>异常入侵检测
%K 系统调用序列
%K 频繁子图挖掘
%K 衍生特征模式
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=93E4023EC8AAFF1BB34D4AF3F02C6527&yid=9377ED8094509821&vid=D3E34374A0D77D7F&iid=38B194292C032A66&sid=7D34DED3F877BD2D&eid=6BF76AE9E086F688&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=0&reference_num=17