Decision tree learning algorithms have been successfully used in knowledge discovery. They use induction in order to provide an appropriate classification of objects in terms of their attributes, inferring decision tree rules. This paper reports on the use of ID3 to Web attack detection. Even though simple, ID3 is sufficient to put apart a number of Web attacks, including a large proportion of their variants. It also surpasses existing methods: it portrays a higher true-positive detection rate and a lower false-positive one. The IDS output classification rules that are easy to read and so computer officers are more likely to grasp the root of an attack, as well as extending the capabilities of the classifier.
CITATION STYLE
García, V. H., Monroy, R., & Quintana, M. (2006). Web attack detection using ID3. In IFIP Advances in Information and Communication Technology (Vol. 218, pp. 323–332). Springer New York LLC. https://doi.org/10.1007/978-0-387-34749-3_34
Mendeley helps you to discover research relevant for your work.