Towards data mining temporal patterns for anomaly intrusion detection systems

机译：面向异常入侵检测系统的数据挖掘时间模式

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

A reasonably light-weight host and net-centric network IDS architecture model is indicated. The model is anomaly based on a state-driven notion of "anomaly". Therefore, the relevant distribution function need not remain constant; it could migrate from states to states without any a priori warning so long as its residency time at a next steady state is sufficiently long to make valid observations there. Only those intrusion events (basically DOS and DDOS variety) capable of triggering anomalous streams of attacks/response both near and/or far of target monitoring point(s) are considered at the first level of detection. At the next level of detection, the filtered states could be fine-combed in a batch mode to mine unacceptable strings of commands or known attack signatures.

机译：指出了一个轻量级的主机和以网络为中心的网络IDS体系结构模型。该模型是基于状态驱动的“异常”概念的异常。因此，相关的分布函数不必保持恒定。只要它在下一个稳定状态的驻留时间足够长以便在那里进行有效观察，它就可以在没有任何先验警告的情况下从一个州迁移到另一个州。在检测的第一级，仅考虑能够触发目标监视点附近和/或远处的攻击/响应异常流的那些入侵事件（基本上是DOS和DDOS变种）。在下一个检测级别，可以以批处理方式对筛选后的状态进行精细组合，以挖掘不可接受的命令字符串或已知的攻击特征。

著录项

来源
《Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications, 2003. Proceedings of the Second IEEE International Workshop on》|2003年|p.205-209|共5页
会议地点
作者
Sengupta S.; Andriamanalimanana B.; Card S.W.; Kadam P.; Ranwadkar S.; Das K.; Parikh S.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类无线电电子学、电信技术;
关键词
computer crime; safety systems; data mining; network IDS architecture; intrusion detection system; distribution function; anomaly detection; DOS; data mining; temporal pattern;

机译：计算机犯罪;安全系统;数据挖掘;网络IDS体系结构;入侵检测系统;分布功能;异常检测; DOS;数据挖掘;时间模式;

相似文献

外文文献
中文文献
专利

1. An Efficient Machine Learning and Data Mining Method for Finding Anomalies in a Cyber Security Intrusion Detection System [J] . Marpu Gowtami, Mula Sudhakar International Journal of Engineering Trends and Technology . 2017,第6期

机译：在网络安全入侵检测系统中查找异常的高效机器学习和数据挖掘方法
2. A Novel Similar Temporal System Call Pattern Mining for Efficient Intrusion Detection [J] . Vangipuram Radhakrishna, Puligadda Veereswara Kumar, Vinjamuri Janaki Journal of Universal Computer Science . 2016,第4期

机译：一种用于高效入侵检测的新型类似时态系统调用模式挖掘
3. Anomaly Based Intrusion Detection in Mixed Attribute Dataset Using Data Mining Methods [J] . B.A. Manjunatha, Prasanta Gogoi Journal of Artificial Intelligence . 2016,第1a3期

机译：使用数据挖掘方法的混合属性数据集中基于异常的入侵检测
4. Towards Data Mining Temporal Patterns for Anomaly Intrusion Detection Systems [C] . Sam Sengupta, Bruno Andriamanalimanana, Stuart W. Card, IEEE International Workshop on Intelligent Data Acquisition and Advanced Computing Systems . 2003

机译：朝向异常入侵检测系统的数据挖掘时间模式
5. SensorWebIDS: A sensor with misuse and anomaly based data mining technique for web intrusion detection [D] . Dong, Jingyu 2006

机译：SensorWebIDS：具有基于滥用和异常的数据挖掘技术的传感器，用于Web入侵检测
6. Mining Recent Temporal Patterns for Event Detection in Multivariate Time Series Data [O] . Iyad Batal, Dmitriy Fradkin, James Harrison, -1

机译：多变量时间序列数据中的事件检测最近的临时模式
7. Towards Data Mining Temporal Patterns for Anomaly Intrusion Detection Systems [O] . Sam Sengupta, Bruno Andriamanalimanana, Stuart W. Card, 2008

机译：面向异常入侵检测系统的数据挖掘时间模式
8. Anomaly-Based Intrusion Detection Systems Utilizing System Call Data. [R] . Skormin, V. A. 2012

机译：基于异常的入侵检测系统利用系统调用数据。

Towards data mining temporal patterns for anomaly intrusion detection systems

摘要

著录项

相似文献

相关主题

期刊订阅