Abstract:A multi-dimension association analysis method of user’s behavioral characteristics based on association rules is proposed for the discovery of information content security incidents in network. The user’s multi- dimension data which generate in communication can be mined. An inspection standard based on Bonferroni’s correction is put forward to deal with the problem of false alarm. In order to meet the demand for the implementation of the method in a massive database, a distributed power set Apriori algorithm in Map-Reduce framework is proposed. Experimental results demonstrate that the proposed method and its corresponding algorithm have strong ability in parallel computing. The algorithm has a great detection rate in the case of low false alarm rate and missing detection rate. The running time is short and it can achieve a fast convergences rate.
葛琳, 季新生, 江涛. 基于关联规则的网络信息内容安全事件发现及其Map-Reduce实现[J]. 电子与信息学报, 2014, 36(8): 1831-1837.
Ge Lin, Ji Xin-Sheng, Jiang Tao. Discovery of Network Information Content Security Incidents Based on Association Rules and Its Implementation in Map-Reduce. , 2014, 36(8): 1831-1837.