Mining intrusion detection alarms for actionable knowledge.
Klaus JulischMarc DacierPublished in: KDD (2002)
Keyphrases
- intrusion detection
- actionable knowledge
- data mining techniques
- data mining
- intrusion detection system
- subgroup discovery
- anomaly detection
- complex data
- network traffic
- data mining technology
- association rules
- discovered rules
- network intrusion detection
- network security
- association rule mining
- rule learning
- detecting anomalous
- competitive intelligence
- data mining algorithms
- false positives
- false alarms
- knowledge discovery
- outlier mining
- mining algorithm
- interestingness measures
- data mining applications
- interesting patterns
- pattern mining
- data warehouse
- information systems
- alert correlation
- information retrieval
- machine learning