DoS detections based on association rules and frequent itemsets

George S. Oreku, Jian Zhong Li, Fredrick J. Mtenzi

Research output: Contribution to journalArticlepeer-review

Abstract

To detect the DoS in networks by applying association rules mining techniques, we propose that association rules and frequent itemsets can be employed to find DoS pattern in packet streams which describe traffic and user behaviors. The method extracts information from the log analysis of submitted packets using the algorithm which depends on the definition of the intrusion. Large itemsets were extracted to represent the super facts to build the association analysis for the intrusion. Network data files were analysed for experiments. The analysis and experimental results are encouraging with better performance as packet frequency number increases.

Original languageEnglish
Pages (from-to)283-289
Number of pages7
JournalJournal of Harbin Institute of Technology (New Series)
Volume15
Issue number2
Publication statusPublished - Apr 2008
Externally publishedYes

Keywords

  • Data mining
  • Intrusion
  • Packets streams

Fingerprint

Dive into the research topics of 'DoS detections based on association rules and frequent itemsets'. Together they form a unique fingerprint.

Cite this