A Modified Two-phase Knowledge Acquisition Algorithm to Construct Worm Knowledge Base | |
---|---|
學年 | 99 |
學期 | 2 |
出版(發表)日期 | 2011-04-01 |
作品名稱 | A Modified Two-phase Knowledge Acquisition Algorithm to Construct Worm Knowledge Base |
作品名稱(其他語言) | |
著者 | Lin, Shun-Chieh; Tung, Chun-Ho; Chiang, Ding-An; Chang, Chung-I |
單位 | 淡江大學資訊工程學系 |
出版者 | Gyeongju-si: Advanced Institute of Convergence I T |
著錄名稱、卷期、頁數 | Advances in Information Sciences and Service Sciences 3(3), pp.136-146 |
摘要 | With the rapid development of Internet, the worm can spread and infect other computers quickly. Lots of variants are evolved too fast to hardly detect them before crafting the specific signatures in most anti-virus software and hardware. Since most of worm technological documents are nonstructured, the discovery of knowledge by data mining is becoming not easy. In this paper, we modify two-phase knowledge acquisition via adding Hierarchical Grids Relation Adjustment algorithm to adjust hierarchical worm knowledge hierarchy. We propose sibling, parent-child, and ancestordescendent relations to guide experts to easily extract the conflict relations in each level of grid. Through the updated grid hierarchy, more exact and efficient worm distinguish rules can be obtained for understanding the worm hierarchy. Also, a worm immune system is implemented here to help users diagnose their vulnerable systems and teach users how to defend threat of worms. Moreover, the system can learn the signatures of variant worms by interacting with experts to easily incremental learn the knowledge of variant worms. |
關鍵字 | Computer Worm; Knowledge Acquisition; Knowledge Base; Security |
語言 | en |
ISSN | 1976-3700; 2233-9345 |
期刊性質 | 國外 |
收錄於 | EI |
產學合作 | |
通訊作者 | Lin, Shun-Chieh; Tung, Chun-Ho; Chiang, Ding-An; Chang, Chung-I |
審稿制度 | 是 |
國別 | KOR |
公開徵稿 | |
出版型式 | 紙本 |
相關連結 |
機構典藏連結 ( http://tkuir.lib.tku.edu.tw:8080/dspace/handle/987654321/89143 ) |