{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,26]],"date-time":"2026-02-26T13:28:32Z","timestamp":1772112512928,"version":"3.50.1"},"publisher-location":"Berlin, Heidelberg","reference-count":39,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540298304","type":"print"},{"value":"9783540320166","type":"electronic"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2005]]},"DOI":"10.1007\/11574798_8","type":"book-chapter","created":{"date-parts":[[2005,11,5]],"date-time":"2005-11-05T02:42:44Z","timestamp":1131158564000},"page":"144-161","source":"Crossref","is-referenced-by-count":11,"title":["A Fast Host-Based Intrusion Detection System Using Rough Set Theory"],"prefix":"10.1007","author":[{"given":"Sanjay","family":"Rawat","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"V. P.","family":"Gulati","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arun K.","family":"Pujari","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"8_CR1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-27778-1_1","volume-title":"Transactions on Rough Sets II","author":"A. An","year":"2004","unstructured":"An, A., Huang, Y., Huang, X., Cercone, N.J.: Feature selection with rough sets for web page classification. In: Peters, J.F., Skowron, A., Dubois, D., Grzyma\u0142a-Busse, J.W., Inuiguchi, M., Polkowski, L. (eds.) Transactions on Rough Sets II. LNCS, vol.\u00a03135, pp. 1\u201313. Springer, Heidelberg (2004)"},{"key":"8_CR2","doi-asserted-by":"crossref","unstructured":"Bace, R., Mell, P.: NIST special publication on intrusion detection system. SP800-31, NIST, Gaithersburg, MD (2001)","DOI":"10.6028\/NIST.SP.800-31"},{"key":"8_CR3","first-page":"321","volume-title":"Rough Sets in Knowledge Discovery","author":"J. Bazan","year":"1998","unstructured":"Bazan, J.: A Comparison of Dynamic and non-Dynamic Rough Set Methods for Extracting Laws from Decision Tables. In: Skowron, A., Polkowski, L. (eds.) Rough Sets in Knowledge Discovery, vol.\u00a01, pp. 321\u2013365. Physica, Heidelberg (1998)"},{"key":"8_CR4","doi-asserted-by":"crossref","first-page":"49","DOI":"10.1007\/978-3-7908-1840-6_3","volume-title":"Rough Set Methods and Applications","author":"J. Bazan","year":"2000","unstructured":"Bazan, J., Nguyen, H.S., Nguyen, S.H., Synak, P., Wr\u00f3blewski, J.: Rough set algorithms in classification problem. In: Polkowski, L., Tsumoto, S., Lin, T.Y. (eds.) Rough Set Methods and Applications, pp. 49\u201388. Physica, Heidelberg (2000)"},{"key":"8_CR5","doi-asserted-by":"crossref","unstructured":"Bazan, J.G., Szczuka, M.S., Wr\u00f3blewski, J.: A new version of rough set exploration system. In: Alpigini, J.J., Peters, J.F., Skowron, A., Zhong, N. (eds.) RSCTC 2002. LNCS (LNAI), vol.\u00a02475, pp. 397\u2013404. Springer, Heidelberg (2002), Available at, http:\/\/logic.mimuw.edu.pl\/~rses\/","DOI":"10.1007\/3-540-45813-1_52"},{"key":"8_CR6","doi-asserted-by":"crossref","unstructured":"Cabrera, J.B.D., Ravichandran, B., Mehra, R.K.: Detection and classification of intrusions and faults using sequences of system calls. In: ACM SIGMOD Record, Special Issue: Special Section on Data Mining for Intrusion Detection and treat Analysis, vol.\u00a030(4), pp. 25\u201334 (2001)","DOI":"10.1145\/604264.604269"},{"issue":"5","key":"8_CR7","doi-asserted-by":"publisher","first-page":"251","DOI":"10.1111\/1468-0394.00249","volume":"20","author":"Z. Cai","year":"2003","unstructured":"Cai, Z., Guan, X., Shao, P., Peng, Q., Sun, G.: A Rough Set Theory Based Method for Anomaly intrusion Detection in Computer Network Systems. J. Expert System\u00a020(5), 251\u2013259 (2003)","journal-title":"J. Expert System"},{"key":"8_CR8","volume-title":"Data mining methods for Knowledge discovery","author":"K. Cios","year":"2000","unstructured":"Cios, K., Pedrycz, W., Swiniarski Roman, W.: Data mining methods for Knowledge discovery. Kluwer Academic Publisher, USA (2000)"},{"key":"8_CR9","unstructured":"DARPA 1998 Data Set, MIT Lincoln Laboratory (1998), available at, http:\/\/www.ll.mit.edu\/IST\/ideval\/data\/data_index.html"},{"key":"8_CR10","doi-asserted-by":"crossref","unstructured":"Delic, D., Lenz H.-J., Neiling, M.: Improving the Quality of Association Rule Mining by Means of Rough Sets. In: Proceedings of the First International Workshop on Soft Methods in Probability and Statistics (SMPS 2002), Warsaw, Poland (2002)","DOI":"10.1007\/978-3-7908-1773-7_28"},{"issue":"10","key":"8_CR11","doi-asserted-by":"publisher","first-page":"88","DOI":"10.1145\/262793.262811","volume":"40","author":"S. Forrest","year":"1997","unstructured":"Forrest, S., Hofmeyr, S.A., Somayaji, A.: Computer Immunology. Communications of the ACM\u00a040(10), 88\u201396 (1997)","journal-title":"Communications of the ACM"},{"key":"8_CR12","doi-asserted-by":"crossref","first-page":"120","DOI":"10.1109\/SECPRI.1996.502675","volume-title":"Proceedings of the 1996 IEEE Symposium on Research in Security and Privacy","author":"S. Forrest","year":"1996","unstructured":"Forrest, S., Hofmeyr, S.A., Somayaji, A., Longstaff, T.A.: A Sense of Self for Unix Processes. In: Proceedings of the 1996 IEEE Symposium on Research in Security and Privacy, pp. 120\u2013128. IEEE Computer Society Press, Los Alamitos (1996)"},{"key":"8_CR13","unstructured":"Garvey, T., Lunt, T.F.: Model-based Intrusion Detection. In: Proceedings of the 14th National Computer Security Conference, pp. 372\u2013385 (1991)"},{"issue":"1","key":"8_CR14","doi-asserted-by":"crossref","first-page":"27","DOI":"10.3233\/FI-1997-3113","volume":"31","author":"J.W. Grzymala-Busse","year":"1997","unstructured":"Grzymala-Busse, J.W.: A New Version of the Rule Induction System LERS. Fundamenta Informaticae\u00a031(1), 27\u201339 (1997)","journal-title":"Fundamenta Informaticae"},{"key":"8_CR15","doi-asserted-by":"crossref","unstructured":"Guan, J.W., Bell, D.A., Liu, D.Y.: The Rough Set Approach to Association Rule Mining. In: Proceedings of the Third IEEE International Conference on Data Mining, ICDM 2003 (2003)","DOI":"10.1109\/ICDM.2003.1250969"},{"issue":"9","key":"8_CR16","doi-asserted-by":"publisher","first-page":"886","DOI":"10.1109\/32.241771","volume":"19","author":"P. Helman","year":"1993","unstructured":"Helman, P., Liepins, G.: Statistical Foundations of Audit Trail Analysis for the Detection of Computer Misuse. IEEE Transactions on Software Engineering\u00a019(9), 886\u2013901 (1993)","journal-title":"IEEE Transactions on Software Engineering"},{"key":"8_CR17","doi-asserted-by":"crossref","first-page":"151","DOI":"10.3233\/JCS-980109","volume":"6","author":"S.A. Hofmeyr","year":"1998","unstructured":"Hofmeyr, S.A., Forrest, A., Somayaji, A.: Intrusion Detection Using Sequences of System Calls. Journal of Computer Security\u00a06, 151\u2013180 (1998)","journal-title":"Journal of Computer Security"},{"key":"8_CR18","doi-asserted-by":"crossref","unstructured":"Ilgun, K.: USTAT: A Real-Time Intrusion Detection System for UNIX. In: Proceedings of the 1993 IEEE Symposium on Research in Security and Privacy, pp. 16\u201328 (1993)","DOI":"10.1109\/RISP.1993.287646"},{"issue":"3","key":"8_CR19","doi-asserted-by":"publisher","first-page":"181","DOI":"10.1109\/32.372146","volume":"21","author":"K. Ilgun","year":"1995","unstructured":"Ilgun, K., Kemmerer, R.A., Porras, P.A.: State Transition Analysis: A Rule-Based Intrusion Detection Approach. IEEE Transactions on Software Engineering\u00a021(3), 181\u2013199 (1995)","journal-title":"IEEE Transactions on Software Engineering"},{"key":"8_CR20","unstructured":"Kemmerer, R.A.: NSTAT: A Model-based Real-time Network Intrusion Detection System. Technical Report, Number TRCS97-18, Computer Science, University of California, Santa Barbara (1998)"},{"key":"8_CR21","unstructured":"Kumar, S., Spafford, E.: A Pattern-Matching Model for Intrusion Detection. In: Proceedings National Computer Security Conference, pp. 11\u201321 (1994)"},{"key":"8_CR22","first-page":"50","volume-title":"Proceedings of the AAAI 1997 workshop on AI methods in Fraud and risk management","author":"W. Lee","year":"1997","unstructured":"Lee, W., Stolfo, S., Chan, P.: Learning Patterns from Unix Process Execution Traces for Intrusion Detection. In: Proceedings of the AAAI 1997 workshop on AI methods in Fraud and risk management, pp. 50\u201356. AAAI Press, Menlo Park (1997)"},{"key":"8_CR23","unstructured":"Lee, W., Stolfo Salvatore, J.: Data Mining Approaches for Intrusion Detection. In: Proceedings of the 7th USENIX Security Symposium (SECURITY 1998), Usenix Association, January 26-29, pp. 79\u201394 (1998)"},{"issue":"9","key":"8_CR24","doi-asserted-by":"publisher","first-page":"1076","DOI":"10.1631\/jzus.2004.1076","volume":"5","author":"Z. Lian-hua","year":"2004","unstructured":"Lian-hua, Z., Guan-hua, Z., Yu, L., Jie, Z., Ying-cai, B.: Intrusion Detection Using Rough Set Classification. Journal of Zhejiang University SCIENCE\u00a05(9), 1076\u20131086 (2004)","journal-title":"Journal of Zhejiang University SCIENCE"},{"key":"8_CR25","doi-asserted-by":"publisher","first-page":"44","DOI":"10.1109\/NSPW.1994.656226","volume-title":"Proceedings of the 1994 Workshop on New Security Paradigms, Little Compton","author":"T.Y. Lin","year":"1994","unstructured":"Lin, T.Y.: Anomaly Detection: A Soft Computing Approach. In: Proceedings of the 1994 Workshop on New Security Paradigms, Little Compton, Rhode Island, United States, pp. 44\u201353. IEEE Computer Society Press, Los Alamitos (1994)"},{"key":"8_CR26","doi-asserted-by":"crossref","unstructured":"Lingras, P.: Rough Set Clustering for Web Mining. In: Proceedings of the IEEE International Conference on Fuzzy Systems 2002, Honolulu, Hawaii (2002)","DOI":"10.1109\/FUZZ.2002.1006647"},{"key":"8_CR27","unstructured":"Lunt, T.F.: Using Statistics to Track Intruders. In: Proceedings of the Joint Statistical Meetings of the American Statistical Association (1990)"},{"key":"8_CR28","unstructured":"Lunt, T.F., Tamaru, A., Gilham, F., Jagannathan, R., Neumann, P.G., Javitz, H.S., Valdes, A., Garvey, T.D.: A Real-Time Intrusion Detection Expert System (IDES) Technical Report, SRI Computer Science Laboratory (1992)"},{"issue":"3","key":"8_CR29","doi-asserted-by":"publisher","first-page":"26","DOI":"10.1109\/65.283931","volume":"8","author":"B. Mukherjee","year":"1994","unstructured":"Mukherjee, B., Heberlein, L.T., Levitt, K.N.: Network Intrusion Detection. IEEE Network\u00a08(3), 26\u201341 (1994)","journal-title":"IEEE Network"},{"key":"8_CR30","doi-asserted-by":"crossref","unstructured":"Mukkamala, R., Gagnon, J., Jajodia, S.: Integrating Data Mining Techniques with Intrusion detection Methods. In: Research Advances in database and Information System Security: IFIPTCII, 13th working conference on Database security. Kluwer Academic Publishers, USA (2000)","DOI":"10.1007\/978-0-387-35508-5_3"},{"key":"8_CR31","doi-asserted-by":"crossref","DOI":"10.1007\/978-94-011-3534-4","volume-title":"Rough sets: Theoretical aspects of reasoning about data","author":"Z. Pawlak","year":"1991","unstructured":"Pawlak, Z.: Rough sets: Theoretical aspects of reasoning about data. Kluwer Academic Publishers, Dordrecht (1991)"},{"key":"8_CR32","unstructured":"Porras, P.A.: STAT \u2013 A State Transition Analysis Tool For Intrusion Detection. Technical Report, Number TRCS93-25, Computer Science. University of California, Santa Barbara (1993)"},{"issue":"5","key":"8_CR33","doi-asserted-by":"publisher","first-page":"411","DOI":"10.1108\/09685220410563397","volume":"12","author":"S. Rawat","year":"2004","unstructured":"Rawat, S., Gulati, V.P., Pujari, A.K.: Frequecy And Ordering Based Similarity Measure For Host Based Intrusion Detection. J. Information Management and Computer Security\u00a012(5), 411\u2013421 (2004)","journal-title":"J. Information Management and Computer Security"},{"key":"8_CR34","unstructured":"Sebring, M.M., Shellhouse, E., Hanna, M.E., Whitehurst, R.A.: Expert System in Intrusion Detection: A Case Study. In: Proceedings of the 11th National Computer Security Conference, pp. 74\u201381 (1988)"},{"key":"8_CR35","first-page":"500","volume-title":"Rough Sets in Data Mining and Knowledge Discovery","author":"J. Stefanowski","year":"1998","unstructured":"Stefanowski, J.: On Rough Set Based Approaches to Induction of Decision Rules. In: Polkowski, L., Skowron, A. (eds.) Rough Sets in Data Mining and Knowledge Discovery, vol.\u00a01, pp. 500\u2013529. Physica, Heidelberg (1998)"},{"key":"8_CR36","unstructured":"Tandon, G., Chan, P.: Learning Rules from System Calls Arguments and Sequences for Anomaly Detection. In: ICDM Workshop on Data Mining for Computer Security (DMSEC), Melbourne, FL, pp. 20\u201329 (2003)"},{"key":"8_CR37","doi-asserted-by":"crossref","unstructured":"Warrender, C., Forrest, S., Pearlmutter, B.: Detecting Intrusions Using System Calls: Alternative Data Modelss. In: IEEE Symposium on Security and Privacy (1999)","DOI":"10.1109\/SECPRI.1999.766910"},{"key":"8_CR38","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"110","DOI":"10.1007\/3-540-39945-3_8","volume-title":"Recent Advances in Intrusion Detection","author":"A. Wespi","year":"2000","unstructured":"Wespi, A., Dacier, M., Debar, H.: Intrusion detection using variable-length audit trail patterns. In: Debar, H., M\u00e9, L., Wu, S.F. (eds.) RAID 2000. LNCS, vol.\u00a01907, pp. 110\u2013129. Springer, Heidelberg (2000)"},{"issue":"4","key":"8_CR39","doi-asserted-by":"publisher","first-page":"635","DOI":"10.1111\/j.1540-5915.2001.tb00975.x","volume":"32","author":"D. Zhu","year":"2001","unstructured":"Zhu, D., Premkumar, G., Zhang, X., Chao-Hsien, C.: Data mining for Network Intrusion Detection: A comparison of alternative methods. J. Decision Sciences\u00a032(4), 635\u2013660 (2001)","journal-title":"J. Decision Sciences"}],"container-title":["Lecture Notes in Computer Science","Transactions on Rough Sets IV"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11574798_8.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,11,17]],"date-time":"2020-11-17T14:57:24Z","timestamp":1605625044000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11574798_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2005]]},"ISBN":["9783540298304","9783540320166"],"references-count":39,"URL":"https:\/\/doi.org\/10.1007\/11574798_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2005]]}}}