See this document in CiteSeerX!

Mining in a Data-flow Environment: Experience in Network Intrusion Detection (1999)  (Make Corrections)  (19 citations)
Wenke Lee, Salvatore J. Stolfo, Kui W. Mok
Proceedings of the Fifth International Conference on Knowledge Discovery and Data Mining (KDD-99)



  Home/Search   Context   Related

Links:   DBLP

 
View or download:
umbc.edu/cadip/docs/NetworkI...kdd99.ps
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  umbc.edu/cadip/pubs (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: We discuss the KDD process in "data-flow" environments, where unstructured and time dependent data can be processed into various levels of structured and semantically rich forms for analysis tasks. Using network intrusion detection as a concrete application example, we describe how to construct models that are both accurate in describing the underlying concepts, and efficient when used to analyze data in real-time. We present procedures for analyzing frequent patterns from lower level data and... (Update)

Cited by:   More
Dynamic Intrusion Detection Using Self-Organizing Maps - Peter Lichodzijewski Piotr (2002)   (Correct)
Anomaly Detection of Web-based Attacks - Christopher Kruegel Chris (2003)   (Correct)
PSoup: a system for streaming queries over streaming data - Chandrasekaran, Franklin (2003)   (Correct)

Similar documents (at the sentence level):   More
67.9%:   Mining in a Data-flow Environment: Experience in Network.. - Lee, Stolfo, Mok (1999)   (Correct)
32.3%:   A Data Mining Framework for Constructing Features and Models for.. - Lee (1999)   (Correct)
7.8%:   Toward Cost-Sensitive Modeling for Intrusion Detection - Lee (2000)   (Correct)

Active bibliography (related documents):   More   All
0.2:   What do Constructive Learners Really Learn? - Thornton (1998)   (Correct)
0.2:   Unsupervised Constructive Learning - Thornton   (Correct)
0.1:   Combining Knowledge Discovery and Knowledge Engineering to.. - Lee, Stolfo (1999)   (Correct)

Similar documents based on text:   More   All
0.4:   Conference, Atlantic City, N.J. March 2, 2000. - Genetic Algorithm Optimization (2000)   (Correct)
0.4:   A High-Performance Network Intrusion Detection System - Sekar, Guang, Verma, Shanbhag (1999)   (Correct)
0.3:   An Improved Algorithm for Fuzzy Data Mining - For Intrusion Detection (2002)   (Correct)

Related documents from co-citation:   More   All
7:   A sense of self for unix processes - Forrest, Hofmeyr et al. - 1996
6:   Jam: Java agents for meta-learning over distributed databases - Stolfo, Prodromidis et al. - 1997
6:   State Transition Analysis: A RuleBased Intrusion Detection System - Ilgun, Kemmerer et al. - 1995

BibTeX entry:   (Update)

W. Lee, S. J. Stolfo, and K. W. Mok. Mining in a data-flow environment: Experience in network intrusion detection. In Proceedings of the ACM SIGKDD International Conference on Knowledge Discovery & Data Mining (KDD-99), August 1999. http://citeseer.ist.psu.edu/article/lee99mining.html   More

@inproceedings{ lee99mining,
    author = "Wenke Lee and Salvatore Stolfo and Kui Mok",
    title = "Mining in a Data-flow Environment: {E}xperience in Network Intrusion Detection",
    booktitle = "Proceedings of the Fifth International Conference on Knowledge Discovery and Data Mining ({KDD}-99)",
    editor = "Surajit Chaudhuri and David Madigan",
    pages = "114--124",
    year = "1999",
    url = "citeseer.ist.psu.edu/article/lee99mining.html" }
Citations (may not include all citations):
921   Mining association rules between sets of items in large data.. - Agrawal, Imielinski et al. - 1993  ACM   DBLP
189   Discovering frequent episodes in sequences (context) - Mannila, Toivonen et al. - 1995  DBLP
106   The KDD process of extracting useful knowledge from volumes .. - Fayyad, Piatetsky-Shapiro et al. - 1996
87   ective rule induction (context) - Cohen - 1995
70   A data mining framework for building intrusion detection mod.. - Lee, Stolfo et al. - 1999  DBLP
59   Toward parallel and distributed learning by meta-learning - Chan, Stolfo - 1993
58   available via anonymous ftp to ftp (context) - Jacobson, Leres et al. - 1989
54   Cost-sensitive classification: Empirical evaluation of a hyb.. - Turney - 1995  DBLP
35   Mining audit data to build intrusion detection models - Lee, Stolfo et al. - 1998  DBLP
21   Data Mining and Knowledge Discovery (context) - Fawcett, Provost et al. - 1997  ACM
15   Network flight recorder (context) - Recorder - 1997
4   Towards a bootstrapping approach to constructive induction - Japkowicz, Hirsh - 1994



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://www.cs.umbc.edu/cadip/pubs.html):   More
DEMIDS: Misuse Detection System Database Systems - Chung, Gertz, Levitt (1999)   (Correct)
Distributed Metastasis: A Computer Network Penetration Methodology - Stewart (1999)   (Correct)
A Data Mining Framework for Building Intrusion Detection Models - Lee, Stolfo, Mok (1999)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC