{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T16:35:26Z","timestamp":1781109326036,"version":"3.54.1"},"reference-count":15,"publisher":"IGI Global Scientific Publishing","issue":"2","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013,4,1]]},"abstract":"<p>The continuously rising Internet attacks pose severe challenges to develop an effective Intrusion Detection System (IDS) to detect known and unknown malicious attack. In order to address the problem of detecting known, unknown attacks and identify an attack grouped, the authors provide a new multi stage rules for detecting anomalies in multi-stage rules. The authors used the RIPPER for rule generation, which is capable to create rule sets more quickly and can determine the attack types with smaller numbers of rules. These rules would be efficient to apply for Signature Intrusion Detection System (SIDS) and Anomaly Intrusion Detection System (AIDS).<\/p>","DOI":"10.4018\/jisp.2013040102","type":"journal-article","created":{"date-parts":[[2013,9,27]],"date-time":"2013-09-27T11:29:40Z","timestamp":1380281380000},"page":"29-43","source":"Crossref","is-referenced-by-count":4,"title":["Malware Detection and Prevention System Based on Multi-Stage Rules"],"prefix":"10.4018","volume":"7","author":[{"given":"Ammar","family":"Alazab","sequence":"first","affiliation":[{"name":"School of Information Technology, Deakin University, Burwood, VIC, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Michael","family":"Hobbs","sequence":"additional","affiliation":[{"name":"School of Information Technology, Deakin University, Burwood, VIC, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jemal","family":"Abawajy","sequence":"additional","affiliation":[{"name":"School of Information Technology, Deakin University, Burwood, VIC, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ansam","family":"Khraisat","sequence":"additional","affiliation":[{"name":"Ballarat University, Mt Helen, VIC, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"jisp.2013040102-0","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-4666-3926-3.ch012"},{"key":"jisp.2013040102-1","unstructured":"Alazab, A., Alazab, M., Abawajy, J., & Hobbs, M. (2011). Web application protection against SQL injection attack. Paper presented at the ICITA 2011: Proceedings of the 7th International Conference on Information Technology and Applications."},{"key":"jisp.2013040102-2","doi-asserted-by":"crossref","unstructured":"Alazab, A., Hobbs, M., Abawajy, J., & Alazab, M. (2012). Using feature selection for intrusion detection system. In Proceedings of the 2012 International Symposium on Communications and Information Technologies (ISCIT).","DOI":"10.1109\/ISCIT.2012.6380910"},{"key":"jisp.2013040102-3","unstructured":"Cohen, W. W., & Singer, Y. (1999). A simple, fast, and effective rule learner. In Proceedings of the National Conference on Artificial Intelligence."},{"key":"jisp.2013040102-4","doi-asserted-by":"crossref","unstructured":"Hunt, E. B. (1962). Concept learning: An information processing problem.","DOI":"10.1037\/13135-000"},{"key":"jisp.2013040102-5","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2012.05.009"},{"key":"jisp.2013040102-6","unstructured":"Kruegel, C., Mutz, D., Robertson, W., & Valeur, F. (2003, December 8-12). Bayesian event classification for intrusion detection. In Proceedings of the 19th Annual Computer Security Applications Conference."},{"key":"jisp.2013040102-7","doi-asserted-by":"crossref","unstructured":"Liu, W., Chawla, S., Cieslak, D. A., & Chawla, N. V. (2010). A robust decision tree algorithm for imbalanced data sets. In Proceedings of the Tenth SIAM International Conference on Data Mining.","DOI":"10.1137\/1.9781611972801.67"},{"key":"jisp.2013040102-8","doi-asserted-by":"crossref","unstructured":"Mathew, S., Giomundo, R., Upadhyaya, S., Sudit, M., & Stotz, A. (2006). Understanding multistage attacks by attack-track based visualization of heterogeneous event streams. In Proceedings of the Conference on Computer and Communications Security: Proceedings of the 3rd International Workshop on Visualization for Computer Security.","DOI":"10.1145\/1179576.1179578"},{"key":"jisp.2013040102-9","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2007.02.001"},{"key":"jisp.2013040102-10","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2007.11.051"},{"key":"jisp.2013040102-11","doi-asserted-by":"crossref","unstructured":"Sinclair, C., Pierce, L., & Matzner, S. (1999). An application of machine learning to network intrusion detection. In Proceedings of the 15th Annual Computer Security Applications Conference, 1999. (ACSAC'99) Proceedings.","DOI":"10.1109\/CSAC.1999.816048"},{"key":"jisp.2013040102-12","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2009.07.008"},{"key":"jisp.2013040102-13","doi-asserted-by":"publisher","DOI":"10.1016\/j.cpc.2009.05.004"},{"key":"jisp.2013040102-14","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2010.02.102"}],"container-title":["International Journal of Information Security and Privacy"],"original-title":[],"language":"ng","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=87413","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,1]],"date-time":"2022-06-01T23:09:20Z","timestamp":1654124960000},"score":1,"resource":{"primary":{"URL":"https:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/jisp.2013040102"}},"subtitle":[""],"short-title":[],"issued":{"date-parts":[[2013,4,1]]},"references-count":15,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2013,4]]}},"URL":"https:\/\/doi.org\/10.4018\/jisp.2013040102","relation":{},"ISSN":["1930-1650","1930-1669"],"issn-type":[{"value":"1930-1650","type":"print"},{"value":"1930-1669","type":"electronic"}],"subject":[],"published":{"date-parts":[[2013,4,1]]}}}