Measuring similarities among intrusion detection rules on the MapReduce environment

Research in Adaptive and Convergent Systems Pub Date : 2014-10-05 DOI:10.1145/2663761.2664224

Inbok Lee, P. Do, Phuoc Do, Sung-Ryul Kim

引用次数: 0

Abstract

In this paper, we define the problem of measuring similarities among intrusion detection rules written as regular expression. It is related to the efficiency of the intrusion detection systems. To avoid complex computation related to regular expression, we propose a simple heuristic of considering them as strings and computing the distances among them. We implemented this idea on MapReduce environment.

查看原文本刊更多论文

测量MapReduce环境中入侵检测规则之间的相似度

本文定义了用正则表达式表示的入侵检测规则之间的相似度度量问题。这关系到入侵检测系统的效率。为了避免与正则表达式相关的复杂计算，我们提出了一个简单的启发式方法，将它们视为字符串并计算它们之间的距离。我们在MapReduce环境中实现了这个想法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Research in Adaptive and Convergent Systems

自引率

0.00%

发文量