GUO Ling-yan,CHEN Qi,XIAO Zheng-jin

DOI: https://doi.org/10.3969/j.issn.1000-7024.2005.11.076

2005-01-01

Abstract:Hybrid reasoning system integrating of rule-basereasoning andcase-base reasoningwill greatly improve the efficiency ofIDSS system and the general reasoning ability.Because of the incompatible of hybrid system,the IDSS developing cycle is postponed.On base of the IDSS environment language Knonit,an extensible hybrid reasoning framework was introduced.With the component char-acteristic of Knonit,reasoning solution could be added to cope with the new integrating way,and the rule library and case library could be highly reused.

JIANG Jie,ZHANG Jie,CHEN De-ren

DOI: https://doi.org/10.3785/j.issn.1008-973x.2009.09.011

2009-01-01

Abstract:An extended context-aware role based access control(RBAC) based on reasoning(RC-RBAC) model was proposed by integrating the single context-aware RBAC and reasoning-based RBAC in order to solve the problems of the Absence of the adjustment and generation of the context-aware condition dynamically and the incapacity of updating the user authorization according to the adjusted constrain conditions in the existing RBAC.The extended model used the rule reasoning to adjust and generate the context constrains dynamically and start the common sensors and the self-defined sensors to collect the attribute values of the conditions.The access permission to the sensitive data was updated in real time based on the context-aware logic reasoning using the user rules and permission rules.The application results show that the extended RC-RBAC model can be employed in the distributed environment to satisfy the need of the dynamic authorization and reduce the real-time access control management complexity.

Yu Quan,He Qinming,Zhang Baorong

DOI: https://doi.org/10.3969/j.issn.1000-386X.2005.03.027

2005-01-01

Abstract:Case-based Reasoning(CBR) has become a successful technique for knowledge-based systems in many domains.In this paper,we discuss the CBR diagnosis support system(DSS) and its application in clinical diagnosis.We have mainly studied the memory structure,related retrieval algorithms,weight adjusting approach of symptoms of the DSS.

Jinyan LI,Zhonghua YU,Xuanguo XU

DOI: https://doi.org/10.11918/j.issn.0367-6234.201512092

2017-01-01

Abstract:To reasonably and timely solve the quality problem lacking of correlation detection information, a case-based reasoning method was proposed based on extension knowledge representation by taking the limitations of formal representation and reasoning method into consideration. Firstly, the knowledge representations of matter-element characteristic items and instance model in quality problem domain were put forward based on the matter-element model. Secondly, the problems of feature adjustment in the process of case retrieving, reusing, revising and retaining were solved by extension transformation. And then, combining with hierarchical organization form for cases based on domain knowledge and nearest neighbor strategy, the case retrieval algorithm was adapted for quality problems in the production process. With the application in vibration problem of 608-2RS ball bearing, the result indicates that the method has good practicability and feasibility.

Hui LI,Chong-Zhao HAN,Qing-Hua ZHENG,Xin ZAN

2004-01-01

Abstract:On the basis of analyzing the evolution and drawbacks of current intrusion detection systems (IDS), a novel intrusion event correlation system (ECS) based on interactive knowledge discovery is proposed. ECS is composed of off-line part and on-line part. As the former, FP_Tree and WINEPI algorithms are first introduced to implement interactive knowledge discovery for intrusion events correlation. And the discovered frequent patterns and sequence patterns are converted into associative rules for the inference of intrusion events. As the online part of the ECS, embedded CLIPS inference engine is employed to do event correlation, based on priori knowledge and the associative rules discovered above. Application of the ECS in the integrated network security monitor and defense system named Net-Keeper shows that the proposed system is an open and efficient intrusion event correlation engine.

Gg Zhang,Ys Geng,Dg Chen,Jh Wang

2003-01-01

Abstract:This paper presents a case-based reasoning (CBR) approach combing with knowledge-based reasoning technique to build the intelligent CAD (ICAD) system for relay circuit. In order to represent the cases of relay circuit, an electrical graphics description language, called XvgML, has been implemented to describe the structure, principle and function of electric circuits. A case-based learning method using topological graph search for electrical sub-circuits is also proposed. Moreover, a cooperative software model has been developed, which provides an Object-Web framework for Internet-oriented design environment. Finally, a sample is given to demonstrate the use of this model for the implementation of intelligent Relay Circuit CAD system (iRCCAD).

Bing Zhu

2008-01-01

Abstract:Hazard and operability(HAZOP) analysis is a widely recognized process hazards analysis(PHA) technique used for hazard identification in the chemical process industry in the world.To overcome the shortage of the existing HAZOP expert systems with regard to non-routine analysis,a case based reasoning framework is proposed in this paper.The case base and the structure of cases are briefly described and the case search and matching strategies are presented.To facilitate the management of the knowledge base,a case constructor is developed.The industrial case study demonstrates that the CBRbased HAZOP expert system has overcome the technical bottleneck of the existing HAZOP expert systems in machine learning and non-routine HAZOP analysis.

Lu Yang,Gan Zhihua,Chai Xiuli

DOI: https://doi.org/10.1109/WCICA.2010.5554770

2010-01-01

Intelligent Control and Automation

Abstract:In this paper, a multiple fault diagnosis method based on case-based reasoning (CBR) is presented. And the characteristics of multiple fault modes are studied, then the case knowledge library is established for multiple faults, finally a two-step case retrieval strategy is proposed. The candidate case generation method based on the membership weights is employed to initially retrieve, which can reduce the number of candidate cases efficiently. Then, through calculating the case similarity using the grey relational analysis, the most probable fault case is obtained. It can avoids the problem of time-consuming computation resulting from the combination explosion of multiple faults. Finally, an example is applied to illustrate the proposed scheme, the results mean that the above method is effective, and it can be adopted in the actual industrial production.

Yl Wang,T Hu,Ss Zhang

DOI: https://doi.org/10.1109/ICSMC.2003.1245755

2003-01-01

Abstract:Case-based reasoning (CBR) is a methodology that follows mankind's problem solving strategy. Most traditional CBR systems are built in a fixed index structure and they cannot be easily adapted to fit new environment. In this paper a KM framework is proposed that combines ontology, case templates and case-based reasoning to solve the problems. In this framework, an enterprise ontology provides the basis for integration among knowledge resources. Case templates can be reconfigured based on the enterprise's ontology by the user. The knowledge structure and the user-interface of the system can be reconfigured so that the system can suit for an enterprise whose knowledge structure and the requirement for knowledge management system change rapidly. Besides, a workflow based knowledge acquisition method is also discussed that assures the quality of the knowledge acquired.

Yuan Guo,Yinghong Peng,Jie Hu

DOI: https://doi.org/10.1016/j.compind.2012.10.006

IF: 10

2012-01-01

Computers in Industry

Abstract:Case-based reasoning (CBR) has shown significant superiority in creative application (innovation) in many areas, especially those strong in practice but poor in theory, such as engineering design. But existing CBR systems have poor semantic understanding, which seriously hampers their creative application. So this paper mainly focuses on the research of case retrieval of CBR system and proposes an intelligent case retrieval method by integrating ontology technology into CBR system. The proposed method has enough semantic understanding ability and can help designers find the desired case, from which designers can gain enlightenment and inspiration for developing new ideas. The work of this research is mainly that adopt the combination of two ontology acquisition means to improve domain knowledge acquisition and propose a new semantic retrieval method to improve semantic understanding of case retrieval. At last a kind of typical engineering design – injection mold design is taken an example to validate the proposed method and Lots of experiments are organized to test the performance and the results show that the proposed approach outperforms existing models.

Yikun Su,Shijing Yang,Kangning Liu,Kaicheng Hua,Qi Yao

DOI: https://doi.org/10.3390/ijerph16091511

2019-04-29

Abstract:Case-based reasoning (CBR) has been extensively employed in various construction management areas, involving construction cost prediction, duration estimation, risk management, tendering, bidding and procurement. However, there has been a dearth of research integrating CBR with construction safety management for preventing safety accidents. This paper proposes a CBR model which focuses on case retrieval and reuse to provide safety solutions for new problems. It begins with the identification of case problem attribute and solution attribute, the state of hazard is used to describe the problem attribute based on principles of people's unsafe behavior and objective's unsafe state. Frame-based knowledge representation method is adopted to establish the case database from dimensions of slot, facet and facet's value. Besides, cloud graph method is introduced to determine the attribute weight through analyzing the numerical characteristics of expectation value, entropy value and hyper entropy value. Next, thesaurus method is employed to calculate the similarity between cases including word level similarity and sentence level similarity. Principles and procedures have been provided on case revise and case retain. Finally, a real-world case is conducted to illustrate the applicability and effectiveness of the proposed model. Considering the high potential for pre-control and decision-making of construction safety accident, the proposed model is expected to contribute safety managers to take decisions on prevention measures more efficiently.

Ming Zhou,Zhimin Chen,Wenjing He,Xu Chen

DOI: https://doi.org/10.1016/j.cie.2010.03.008

IF: 7.18

2010-01-01

Computers & Industrial Engineering

Abstract:Simulation modelling is a complex decision-making process that involves the processing of various knowledge and information within a context defined by specific application. Building a “good” simulation model has been heavily reliant on the skill and experience of human expert, which has become one of the most expensive and limited resources in market competition. Case-based reasoning (CBR) can be used to effectively solve problems in ill-defined domains where operations specific knowledge and information are processed in a contextual manner such as simulation modeling. This paper addresses some of the basic issues in applying CBR to improve simulation modeling, with emphasis on knowledge or case representation, case indexing, and case matching. Numerical examples and experimental studies were conducted to verify and validate the concepts and model/algorithms developed. The results showed the effectiveness and applicability of proposed method.

ZengRi Zeng,Wei Peng,Detian Zeng,Chong Zeng,YiFan Chen

DOI: https://doi.org/10.1016/j.jisa.2022.103124

IF: 4.96

2022-03-01

Journal of Information Security and Applications

Abstract:Among network security issues, distributed denial of service (DDoS) attacks are particularly harmful to a network. Several previous machine learning (ML)-based network intrusion detection approaches have been developed to protect against DDoS attacks. However, existing ML detection approaches diagnose the causality between attacks and traffic features based mainly on purely associative features. Causal reasoning shows that this inability to disentangle correlation from causation can result in diagnostic errors. To solve this problem, this paper proposes a framework of DDoS detection based on causal reasoning to solve the problem of false associations. This framework consists of two main parts: feature selection based on "do-operations" and attack detection by counterfactual diagnosis. First, the noise features that are falsely associated with DDoS attacks are deleted during the "do-operations". Then, the expected number of anomaly features under different DDoS attack types is calculated in the counterfactual situations. The larger the expected value that is calculated for a certain attack, the more likely it is that the anomaly features of the testing data are caused by this attack. The experiments show that the causality between DDoS attacks and the anomaly features can be fully described by our method, which, compared to other classic ML associative methods, increases the detection accuracy by approximately 5% on average.

computer science, information systems

Ashwinkumar Ganesan,Pooja Parameshwarappa,Akshay Peshave,Zhiyuan Chen,Tim Oates

DOI: https://doi.org/10.48550/arXiv.1903.12101

2019-03-29

Abstract:Evolving cybersecurity threats are a persistent challenge for systemadministrators and security experts as new malwares are continu-ally released. Attackers may look for vulnerabilities in commercialproducts or execute sophisticated reconnaissance campaigns tounderstand a targets network and gather information on securityproducts like firewalls and intrusion detection / prevention systems(network or host-based). Many new attacks tend to be modificationsof existing ones. In such a scenario, rule-based systems fail to detectthe attack, even though there are minor differences in conditions /attributes between rules to identify the new and existing attack. Todetect these differences the IDS must be able to isolate the subset ofconditions that are true and predict the likely conditions (differentfrom the original) that must be observed. In this paper, we proposeaprobabilistic abductive reasoningapproach that augments an exist-ing rule-based IDS (snort [29]) to detect these evolved attacks by (a)Predicting rule conditions that are likely to occur (based on existingrules) and (b) able to generate new snort rules when provided withseed rule (i.e. a starting rule) to reduce the burden on experts toconstantly update them. We demonstrate the effectiveness of theapproach by generating new rules from the snort 2012 rules set andtesting it on the MACCDC 2012 dataset [6].

Cryptography and Security,Artificial Intelligence,Machine Learning

CHEN Lang-tao,ZHANG Cheng-hong,ZHANG Cheng

DOI: https://doi.org/10.3969/j.issn.0427-7104.2005.06.018

2005-01-01

Abstract:The drastic market competition urges companies to cooperate with the strategy of combining resources inside and outside.Collaborative commerce(CC) is an innovative management methodology which can help companies deliver high performance through inter-organizational knowledge sharing.Case-based reasoning(CBR) is an artificial intelligence(AI) technique that solves new problem based on reuse of past experience.To apply CBR to collaborative commerce,a case-based reasoning model for collaborative commerce and especially focused on the process of case-based reasoning in collaborative commerce environment was presented.

TIAN Zhi-hong,ZHANG Wei-zhe,ZHANG Yong-zheng,ZHANG Hong-li,LI Yang,JIANG Wei

DOI: https://doi.org/10.3321/j.issn:1000-436x.2007.12.013

2007-01-01

Abstract:To construct attack scenarios and predict intrusion intents automatically,a real-time alert correlation approach based on capability transition model was proposed.By highly abstracting the reasoning evidences,the process complexity is effectively reduced.Experiment results on the DARPA2000 IDS test dataset indicate that the method is effective and efficient.

柳炳祥,盛昭瀚

DOI: https://doi.org/10.3321/j.issn:1001-0920.2003.04.026

2003-01-01

Abstract:A new method based on case-based reasoning theory is proposed to analysis the cheat risks. Some critical techniques are investigated such as knowledge representation, retrieval of similar cases in case library and case learning. A credit card cheat example is given to validate the method based on case-based reasoning. The results show that it is reliable for identifying various cheat risks.

Huang Chao,Huang Quanyi,Zhong Shaobo,Chen Jianguo

DOI: https://doi.org/10.4028/www.scientific.net/amm.333-335.1324

2013-01-01

Applied Mechanics and Materials

Abstract:Emergency management is such a domain where experiential knowledge could be easily collected, and is quite suitable for the application of case based reasoning. However, in practice there are two problems limiting the effectiveness of CBR, the he incomplete information and changing situations. This paper proposed an approach based on fuzzy sets and text mining to solve those two problems, which contains four steps: a) represent the attributes with fuzzy sets, b) extract solution texts with text classification, c) establish connections of attributes and solutions with association rules, and d) adjust the solution with fuzzy reasoning. An example shows the adaption for emergency management and illustrates the improvement for CBR with the approach.

Zhang, Yanling,Liu, Haolin,Dong, Xiaoju,Li, Chenlu,Zhang, Zexi

DOI: https://doi.org/10.1007/s12650-021-00789-5

IF: 1.7

2021-01-01

Journal of Visualization

Abstract:Cyber security issues are always worthy of attention. Intrusion detection system (IDS) is one of approaches used to protect computer system and identify potential attack. However, existing methods are limited by high-dimensional computational complexity in rare or unknown attack detection task. To improve the ability of detecting anomaly intrusions, a hybrid intrusion detection framework is proposed in this paper. The proposed RuleRCD algorithm first uses fuzzy association rules based on Apriori and K -Means algorithm for normal pattern and major attack detection. The other data are then fed to an active learning-based rare category detection algorithm to identify its attack pattern. This paper also introduces an interactive visualization system, which integrates experts’ decision into intrusion detection workflow. The method improves the effectiveness and interpretability of detection process. KDD-99 dataset is used to evaluate the proposed framework. The result shows that the approach outperforms some methods, especially in terms of the rare attack.

Baishang Zhang,Xiangyang Li,Tienan Wang,Gregor Shirley

DOI: https://doi.org/10.3969/j.issn.1001-3695.2016.03.001

2016-01-01

Abstract:How to integrate case-based reasoning(CBR)with intelligent methods and intelligent technologies for improving the efficiency of CBR in expert systems development is an important research topic.With the rapid development of computer sci-ence,new characteristics have been appeared in the integration of CBR and intelligent methods and intelligent technologies. This paper surveyed the newly development of the integration of CBR and intelligent methods and intelligent technologies in re-cent years.It analyzed the reasons that why CBR integrated with intelligent methods and intelligent technologies,and it also summarized types of integration models,integration application in CBR and advantages of the integration of CBR and intelligent methods and intelligent technologies.Finally,this paper presented some promising directions and new methods in the area of integrated CBR according to the current status of research.