Abstract

CARVAJAL MONTEALEGRE, Carlos Javier. Extracting classification rules from an informatic security incidents repository by genetic programming. Tecnura [online]. 2015, vol.19, n.44, pp.109-119. ISSN 0123-921X.  https://doi.org/10.14483/udistrital.jour.tecnura.2015.2.a08.

This paper describes the data mining process to obtain classification rules over an information security incident data collection, explaining in detail the use of genetic programming as a mean to model the incidents behavior and representing such rules as decision trees. The described mining process includes several tasks, such as the GP (Genetic Programming) approach evaluation, the individual's representation and the algorithm parameters tuning to upgrade the performance. The paper concludes with the result analysis and the description of the rules obtained, suggesting measures to avoid the occurrence of new informatics attacks. This paper is a part of the thesis work degree: Information Security Incident Analytics by Data Mining for Behavioral Modeling and Pattern Recognition (Carvajal, 2012).

Keywords : data collection; data mining; decision trees; genetic programming; information security.

        · abstract in Spanish     · text in Spanish     · Spanish ( pdf )