• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Eighth ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, Jul 23-26, 2002, Edmonton >ADMIT: Anomaly-based Data Mining for Intrusions
【24h】

ADMIT: Anomaly-based Data Mining for Intrusions

机译:ADMIT:基于异常的入侵数据挖掘

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Security of computer systems is essential to their acceptance and utility. Computer security analysts use intrusion detection systems to assist them in maintaining computer system security. This paper deals with the problem of differentiating between masqueraders and the true user of a computer terminal. Prior efficient solutions are less suited to real time application, often requiring all training data to be labeled, and do not inherently provide an intuitive idea of what the data model means. Our system, called ADMIT, relaxes these constraints, by creating user profiles using semi-incremental techniques. It is a real-time intrusion detection system with host-based data collection and processing. Our method also suggests ideas for dealing with concept drift and affords a detection rate as high as 80.3% and a false positive rate as low as 15.3%.
机译:计算机系统的安全性对于它们的接受和实用至关重要。计算机安全分析人员使用入侵检测系统来帮助他们维护计算机系统安全。本文处理区分伪装者和计算机终端的真实用户的问题。现有的高效解决方案不太适合实时应用,通常需要对所有训练数据进行标记,并且固有地不能提供数据模型含义的直观想法。我们的系统称为ADMIT,通过使用半增量技术创建用户配置文件来放松这些约束。它是一个实时入侵检测系统,具有基于主机的数据收集和处理功能。我们的方法还提出了解决概念漂移的想法,并提供了高达80.3%的检测率和低至15.3%的误报率。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号