{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,4]],"date-time":"2024-09-04T21:58:05Z","timestamp":1725487085196},"publisher-location":"Berlin, Heidelberg","reference-count":26,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540335207"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1007\/3-540-33521-8_27","type":"book-chapter","created":{"date-parts":[[2007,7,3]],"date-time":"2007-07-03T03:10:01Z","timestamp":1183432201000},"page":"273-285","source":"Crossref","is-referenced-by-count":0,"title":["Learning Symbolic User Models for Intrusion Detection: A Method and Initial Results"],"prefix":"10.1007","author":[{"given":"Ryszard S.","family":"Michalski","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kenneth A.","family":"Kaufman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jaroslaw","family":"Pietrzykowski","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bart\u0142omiej","family":"\u015anie\u017cy\u0144ski","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Janusz","family":"Wojtusiak","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"27_CR1","doi-asserted-by":"crossref","unstructured":"1. Adomavicius, G. and Tuzhilin, A., \u201cBuilding Customer Profiles in Personalization Applications Using Data Mining Methods,\u201d IEEE Computer, 34(2), 2001.","DOI":"10.1109\/2.901170"},{"key":"27_CR2","volume-title":"Intrusion Detection","author":"R.G. Bace","year":"2000","unstructured":"2. Bace, R.G.,. Intrusion Detection, Indianapolis: Macmillan Technical Publishing, 2000."},{"issue":"2\u20133","key":"27_CR3","doi-asserted-by":"publisher","first-page":"147","DOI":"10.1023\/A:1026501525781","volume":"10","author":"D. Billsus","year":"2000","unstructured":"3. Billsus, D. and Pazzani, M., \u201cUser Modeling For Adaptive News Access,\u201d User Modeling and User-Adapted Interaction, 10(2\u20133):147\u2013180, 2000.","journal-title":"User Modeling and User-Adapted Interaction"},{"key":"27_CR4","doi-asserted-by":"crossref","unstructured":"4. Cortes, C., Fisher, K., Pregibon, D., Rogers, A. and Smith, F., \u201cHancock: A Language For Extracting Signatures From Data Streams,\u201d Proceedings of the 6th ACM SIGKDD international Conference on Knowledge Discovery and Data Mining, 2000.","DOI":"10.1145\/347090.347094"},{"key":"27_CR5","doi-asserted-by":"crossref","unstructured":"5. Eskin, E., Arnold, A., Prerau, M., Portnoy, L. and Stolfo, S., \u201cA Geometric Framework for Unsupervised Anomaly Detection: Detecting Intrusions in Unlabeled Data,\u201d in D. Barbara, & S. Jajodia (Eds.), Applications of Data Mining in Computer Security, Kluwer, 2002, pp. 77\u2013102.","DOI":"10.1007\/978-1-4615-0953-0_4"},{"key":"27_CR6","unstructured":"6. Goldring, T., \u201cRecent Experiences with User Profiling for Windows NT,\u201d Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection, 2002."},{"key":"27_CR7","unstructured":"7. Goldring, T., Shostak, J., Tessman, B. and Degenhardt, S., \u201cUser Pro.ling (Extended Abstract),\u201d NSA unclassified internal report, 2000."},{"key":"27_CR8","doi-asserted-by":"crossref","first-page":"151","DOI":"10.3233\/JCS-980109","volume":"6","author":"S. Hofmeyr","year":"1998","unstructured":"8. Hofmeyr, S., Forrest, S. and Somayaji, A., \u201cIntrusion Detection using Sequences of System Calls,\u201d Journal of Computer Security, 6, 1998, pp. 151\u2013180.","journal-title":"Journal of Computer Security"},{"key":"27_CR9","doi-asserted-by":"crossref","unstructured":"9. Javitz H. S. and Valdes, A., \u201cThe SRI IDES Statistical Anomaly Detector,\u201d Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland, CA, May 1991.","DOI":"10.1109\/RISP.1991.130799"},{"key":"27_CR10","doi-asserted-by":"crossref","unstructured":"10. Julisch, K. and Dacier M., \u201cMining Intrusion Detection Alarms for Actionable Knowledge,\u201d Proc. 8th Intl. Conf. on Knowledge Discovery and Data Mining, July 2002.","DOI":"10.1145\/775047.775101"},{"key":"27_CR11","unstructured":"11. Kerber, R., \u201cChimerge: Discretization for Numeric Attributes,\u201d Proceedings of the Tenth National Conference on Artificial Intelligence (AAAI-92), 1992, pp. 123\u2013128."},{"key":"27_CR12","doi-asserted-by":"publisher","first-page":"295","DOI":"10.1145\/322510.322526","volume":"2","author":"T. Lane","year":"1999","unstructured":"12. Lane, T. and Brodley, C.E., \u201cTemporal Sequence Learning and Data Reduction for Anomaly Detection,\u201d ACM Trans. on Information and Syst. Security, 2, 1999, pp. 295\u2013331.","journal-title":"ACM Trans. on Information and Syst. Security"},{"key":"27_CR13","doi-asserted-by":"publisher","first-page":"262","DOI":"10.1145\/382912.382923","volume":"3","author":"J. McHugh","year":"November 2000","unstructured":"13. McHugh, J., \u201cTesting Intrusion Detection Systems: A Critique of the 1998 and 1999 DARPA Intrusion Detection System Evaluations as Performed by Lincoln Laboratory,\u201d ACM Trans. on Information & Systems Security, 3, November 2000, pp. 262\u2013294.","journal-title":"ACM Trans. on Information & Systems Security"},{"key":"27_CR14","unstructured":"14. Michalski, R.S., \u201cAttributional Calculus: A Logic and Representation Language for Natural Induction,\u201d Reports of the Machine Learning and Inference Laboratory, MLI 04\u20132, George Mason University, 2004."},{"key":"27_CR15","unstructured":"15. Michalski, R.S., Kaufman K., Pietrzykowski, J., Sniezynski, B. and Wojtusiak, J., \u201cLearning User Models for Computer Intrusion Detection: Preliminary Results from Natural Induction Approach,\u201d Reports of the Machine Learning and Inference Laboratory, MLI 05\u20133, George Mason University, 2005."},{"key":"27_CR16","unstructured":"16. Mukkamala, S. and Sung, A. \u201cComparison of Neural Networks and Support Vector Machines in Intrusion Detection,\u201d Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection, 2002."},{"key":"27_CR17","unstructured":"17. Novak, J., Stark, V. and Heinbuch, D., \u201cZombie Scan,\u201d Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection, 2002."},{"key":"27_CR18","unstructured":"18. Reinke, R., \u201cKnowledge Acquisition and Refinement Tools for the ADVISE Meta-expert System,\u201d M.S. Thesis, Reports of the Intelligent Systems Group, ISG 84\u20135, UIUCDCS-F-84-921, University of Illinois Dept. of Computer Science, Urbana, 1984. Learning Symbolic User Models for Intrusion Detection 285"},{"key":"27_CR19","doi-asserted-by":"publisher","first-page":"33","DOI":"10.1016\/S0020-0190(00)00122-8","volume":"76","author":"M. Schonlau","year":"2000","unstructured":"19. Schonlau, M. and Theus, M., \u201cDetecting Masquerades in Intrusion Detection based on Unpopular Commands,\u201d Information Processing Letters, 76, 2000, pp. 33\u201338.","journal-title":"Information Processing Letters"},{"key":"27_CR20","doi-asserted-by":"publisher","first-page":"69","DOI":"10.1016\/S0167-9473(03)00177-4","volume":"45","author":"S. Scott","year":"2004","unstructured":"20. Scott, S., \u201cA Bayesian Paradigm for Designing Intrusion Detection Systems,\u201d Computational Statistics and Data Analysis, 45, 2004, pp. 69\u201383.","journal-title":"Computational Statistics and Data Analysis"},{"key":"27_CR21","unstructured":"21. Shah, K., Jonckheere, E. and Bohacek, S., \u201cDetecting Network Attacks through Traffic Modeling,\u201d Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection, 2002."},{"key":"27_CR22","doi-asserted-by":"crossref","unstructured":"22. Shavlik, J. and Shavlik, M., \u201cSelection, Combination, and Evaluation of Effective Software Sensors for Detecting Abnormal Computer Usage,\u201d Proc. of the 10th Intl. Conference on Knowledge Discovery and Data Mining, Seattle, WA, 2004, pp. 276\u2013285.","DOI":"10.1145\/1014052.1014084"},{"key":"27_CR23","unstructured":"23. Streilein, W.W., Cunningham, R.K. and Webster, S.E., \u201cImproved Detection of Low-profile Probe and Novel Denial-of-service Attacks,\u201d Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection, 2002."},{"key":"27_CR24","unstructured":"24. Valdes, A., \u201cProfile Based Intrusion Detection: Lessons Learned, New Directions,\u201d Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection, 2002."},{"key":"27_CR25","doi-asserted-by":"crossref","unstructured":"25. Valdes, A. and Skinner, K., \u201cAdaptive, Model-based Monitoring for Cyber Attack Detection,\u201d in H. Debar, L. Me and F. Wu (Eds.), Lecture Notes in Computer Science #1907 (from Recent Advances in Intrusion Detection, RAID-2000), Springer-Verlag, 2000.","DOI":"10.1007\/3-540-39945-3_6"},{"key":"27_CR26","unstructured":"26. Wojtusiak, J., \u201cAQ21 User's Guide,\u201d Reports of the Machine Learning and Inference Laboratory, MLI 04\u20133, George Mason University, 2004."}],"container-title":["Advances in Soft Computing","Intelligent Information Processing and Web Mining"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/3-540-33521-8_27.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,11,17]],"date-time":"2020-11-17T20:56:02Z","timestamp":1605646562000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/3-540-33521-8_27"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"ISBN":["9783540335207"],"references-count":26,"URL":"https:\/\/doi.org\/10.1007\/3-540-33521-8_27","relation":{},"subject":[]}}