Data mining is becoming a pervasive technology in several activities as using historical data to predict the success of a marketing campaign, looking for patterns in financial transactions to discover illegal activities or analyzing genome sequences. In this paper we adopt a reference flexible mining architecture able to discover knowledge in a distributed and heterogeneous environment. In the context of security, the information we are seeking is the knowledge of whether a security breach has been experienced, and if the answer is yes, who is the perpetrator. To this purpose, the guide lines of the Service Oriented Architecture, SOA, and the Orchestration model have been considered as a way to realize a our proposal of Knowledge Discovery Process to Intrusion Detection.
Applying a Flexible Mining Architecture to Intrusion Detection / Castellano, Marcello; Mastronardi, Giuseppe; Aprile, Angela; Bellone de Grecis, Giuliano; Fiorino, Flaviano. - STAMPA. - (2007), pp. 845-852. (Intervento presentato al convegno 2nd International Conference on Availability, Reliability and Security, ARES 2007 tenutosi a Wien, Austria nel April 10-13, 2007) [10.1109/ARES.2007.41].
Applying a Flexible Mining Architecture to Intrusion Detection
Marcello Castellano;Giuseppe Mastronardi;
2007-01-01
Abstract
Data mining is becoming a pervasive technology in several activities as using historical data to predict the success of a marketing campaign, looking for patterns in financial transactions to discover illegal activities or analyzing genome sequences. In this paper we adopt a reference flexible mining architecture able to discover knowledge in a distributed and heterogeneous environment. In the context of security, the information we are seeking is the knowledge of whether a security breach has been experienced, and if the answer is yes, who is the perpetrator. To this purpose, the guide lines of the Service Oriented Architecture, SOA, and the Orchestration model have been considered as a way to realize a our proposal of Knowledge Discovery Process to Intrusion Detection.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.