EagleEye: A Novel Visual Anomaly Detection Method

机译：EagleEye：一种新颖的视觉异常检测方法

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

We propose a novel visualization technique (Eagle-Eye) for intrusion detection, which visualizes a host as a commu- nity of system call traces in two-dimensional space. The goal of EagleEye is to visually cluster the system call traces. Although human eyes can easily perceive anomalies using EagleEye view, we propose two different methods called SAM and CPM that use the concept of data depth to help administrators distinguish between normal and abnormal behaviors. Our experimental results conducted on Australian Defence Force Academy Linux Dataset (ADFA-LD), which is a modern system calls dataset that includes new exploits and attacks on various programs, show EagleEye's efficiency in detecting diverse exploits and attacks.

机译：我们提出了一种用于入侵检测的新颖的可视化技术（Eagle-Eye），该技术可将主机可视化为二维空间中系统调用轨迹的社区。 EagleEye的目标是可视化地对系统调用轨迹进行聚类。尽管人眼可以使用EagleEye视图轻松感知异常，但我们提出了两种不同的方法，称为SAM和CPM，它们使用数据深度的概念来帮助管理员区分正常行为和异常行为。我们在澳大利亚国防军学院Linux数据集（ADFA-LD）上进行的实验结果是一个现代系统，该数据集包括对各种程序的新利用和攻击，该系统证明了EagleEye在检测多种利用和攻击方面的效率。

著录项

来源
《Annual Conference on Privacy, Security and Trust》|2018年|1-6|共6页
会议地点
作者
Iman Sharafaldin; Ali A. Ghorbani;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Data visualization; Principal component analysis; Intrusion detection; Two dimensional displays; Three-dimensional displays; Dimensionality reduction; Mathematical model;

机译：数据可视化;主成分分析;入侵检测;二维显示;三维显示;降维;数学模型;

相似文献

外文文献
中文文献
专利

1. Adaptive Anomaly Detection in the Behavior of Computer Systems Users on the Basis of Markov Chains of Variable Order. Part Ⅱ. Anomaly Detection Methods and Experimental Results [J] . N.N. KUSSUL, A.M. SOKOLOV Journal of automation and information sciences . 2003,第5a8期

机译：基于变阶马尔可夫链的计算机系统用户行为中的自适应异常检测。第二部分。异常检测方法和实验结果
2. Visual Analytic Method for Metro Anomaly Detection and Diffusion [J] . Yunhui Li, Yong Zhang, He Shi, Journal of advanced transportation . 2020,第2期

机译：地铁异常检测和扩散的视觉分析方法
3. Efficient Computer Network Anomaly Detection by Changepoint Detection Methods [J] . Tartakovsky A. G., Polunchenko A. S., Sokolov G. Selected Topics in Signal Processing, IEEE Journal of . 2013,第1期

机译：通过变更点检测方法进行高效的计算机网络异常检测
4. EagleEye: A Novel Visual Anomaly Detection Method [C] . Iman Sharafaldin, Ali A. Ghorbani Annual International Conference on Privacy, Security and Trust . 2018

机译：EAGLEEYE：一种新型的视觉异常检测方法
5. Detection of Malicious Content in JSON Structured Data Using Multiple Concurrent Anomaly Detection Methods. [D] . Miller, Brett N. 2016

机译：使用多种并发异常检测方法检测JSON结构化数据中的恶意内容。
6. Mathematical methods for visualization and anomaly detection in telemetry datasets [O] . Manuchehr Aminian, Helene Andrews-Polymenis, Jyotsana Gupta, 2020

机译：遥测数据集中可视化和异常检测的数学方法
7. Visualization of Anomalies using Graph-Based Anomaly Detection [O] . Ramesh Paudel, Lauren Tharp, Dulce Kaiser, 2021

机译：使用基于图的异常检测的异常可视化
8. The Visual Detection of Driving While Intoxicated. Field Test of Visual Cues and Detection Methods [R] . Harris, D. H. , Dick, R. A. , Casey, S. M. , 1980

机译：醉酒驾驶的视觉检测。视觉提示和检测方法的现场测试

EagleEye: A Novel Visual Anomaly Detection Method

摘要

著录项

相似文献

相关主题

期刊订阅