Data mining techniques for information security applications
Version of Record online: 14 MAR 2011
Copyright © 2011 John Wiley & Sons, Inc.
Wiley Interdisciplinary Reviews: Computational Statistics
Volume 3, Issue 3, pages 221–229, May/June 2011
How to Cite
Al-Shawi, A. (2011), Data mining techniques for information security applications. WIREs Comp Stat, 3: 221–229. doi: 10.1002/wics.161
- Issue online: 4 APR 2011
- Version of Record online: 14 MAR 2011
- intrusion detection;
- data mining;
- intrusion prevention
Information security technology is an essential component for protecting public and private computing infrastructures. With the widespread utilization of information technology applications, organizations are becoming more aware of the security threats to their resources. No matter how strict the security policies and mechanisms are, more organizations are becoming susceptible to a wide range of security breaches against their electronic resources. Network-intrusion detection is an essential defense mechanism against security threats, which have been increasing in rate lately. It is defined as a special form of cyber threat analysis to identify malicious actions that could affect the integrity, confidentiality, and availability of information resources. Data mining-based intrusion-detection mechanisms are extremely useful in discovering security breaches. This article will provide an overview of the applications of data mining techniques in the information security domain. The focus will be on applying data mining to intrusion detection and intrusion prevention. This article will present a critical overview of the research directions in these fields, which will help researchers identify the key practical and research issues essential for building a successful network-protection system. WIREs Comp Stat 2011 3 221–229 DOI: 10.1002/wics.161
For further resources related to this article, please visit the WIREs website.