Paper Info
Title
Query length impact on misuse detection in information retrieval systems
Abstract
Misuse is the abuse of privileges by an authorized user and is the second most common form of computer crime after viruses. Earlier we proposed a misuse detection approach for information retrieval systems that relied on relevance feedback. The central idea focused on the building of a user profile containing both query and feedback terms from prior queries. Our algorithm matched new activities to existing profiles and assigned a likelihood of misuse to an activity. Only initial evaluation was provided.We now expand and evaluate our system using both short and long queries noting the effect of query length in the accuracy of the detection. The results indicate an overall precision of 83.9% when short queries are used, and 82.2% for long queries. The rate of the undetected misuse for short queries is less than 2% and for long queries less than 6%. Although higher precision score configurations result in a lower false alarm rate, unfortunately, they increase the rate of undetected misuse both for short and long queries. Given this tradeoff, for any particular application constraint, system behavior can be tuned to minimize either false alarms or undetected misuse.
Year
DOI
Venue
2005
10.1145/1066677.1066921
SAC
Keywords
Field
DocType
query length impact,feedback term,misuse detection approach,information retrieval system,authorized user,higher precision score configuration,short query,false alarm,undetected misuse,lower false alarm rate,long query,algorithms,false alarm rate,security
Data mining,User profile,Relevance feedback,Information retrieval,Computer science,Constant false alarm rate,Misuse detection
Conference
ISBN
Citations 
PageRank 
1-58113-964-0
6
0.79
References 
Authors
9
2
Name
Order
Citations
PageRank
Ling Ma1505.36
Nazli Goharian246049.93