Adaptive Sequential Methods for Detecting Network Intrusions

机译：自适应顺序检测网络入侵的方法

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, we propose new sequential methods for detecting port-scan attackers which routinely perform random "portscans" of IP addresses to find vulnerable servers to compromise. In addition to rigorously control the probability of falsely implicating benign remote hosts as malicious, our method performs significantly faster than other current solutions. Moreover, our method guarantees that the maximum amount of observational time is bounded. In contrast to the previous most effective method, Threshold Random Walk Algorithm, which is explicit and analytical in nature, our proposed algorithm involve parameters to be determined by numerical methods. We have introduced computational techniques such as iterative minimax optimization for quick determination of the parameters of the new detection algorithm. A framework of multi-valued decision for detecting portscanners and DoS attacks is also proposed.

机译：在本文中，我们提出了一种新的顺序方法，用于检测端口扫描攻击者，该方法通常对IP地址执行随机的“端口扫描”，以发现容易受到攻击的服务器。除了严格控制将良性远程主机错误地牵连为恶意软件的可能性之外，我们的方法的执行速度明显快于其他当前解决方案。而且，我们的方法保证了最大观察时间是有限的。与本质上是显式和分析性的先前最有效的方法-阈值随机游走算法相反，我们提出的算法包含要通过数值方法确定的参数。我们已经引入了诸如迭代最小极大值优化之类的计算技术，可以快速确定新检测算法的参数。还提出了一种用于检测端口扫描和DoS攻击的多值决策框架。

著录项

来源
《Sensors, and command, control, communications, and intelligence (C3I) technologies for homeland security and homeland defense XII》|2013年|87110M.1-87110M.11|共11页
会议地点 Baltimore MD(US)
作者
Xinjia Chen; Ernest Walker;
展开▼
作者单位

Department of Electrical Engineering, Southern University, Baton Rouge, LA 70813;

Department of Electrical Engineering, Southern University, Baton Rouge, LA 70813;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词

相似文献

外文文献
中文文献
专利

1. A Novel Approach to Detection of Intrusions in Computer Networks via Adaptive Sequential and Batch-Sequential Change-Point Detection Methods [J] . Alexander G. Tartakovsky, Boris L. Rozovskii, Rudolf B. Blazek, IEEE Transactions on Signal Processing . 2006,第9期

机译：通过自适应顺序和批处理顺序变化点检测方法检测计算机网络入侵的新方法
2. Autonomic intrusion detection: Adaptively detecting anomalies over unlabeled audit data streams in computer networks [J] . Wei Wang, Thomas Guyet, Rene Quiniou, Knowledge-Based Systems . 2014,第nova期

机译：自主入侵检测：自适应检测计算机网络中未标记的审核数据流的异常
3. A Sequential Detection Method for Intrusion Detection System Based on Artificial Neural Networks [J] . Zhao Hao, Yaokai Feng, Hiroshi Koide, International Journal of Networking and Computing . 2020,第2期

机译：一种基于人工神经网络的入侵检测系统顺序检测方法
4. Adaptive Sequential Methods for Detecting Network Intrusions [C] . Xinjia Chen, Ernest Walker Conference on sensors, and command, control, communications, and intelligence (C3I) technologies for homeland security and homeland defense XII . 2013

机译：用于检测网络入侵的自适应顺序方法
5. Machine Learning Methods for Network Intrusion Detection and Intrusion Prevention Systems [D] . Stefanova, Zheni Svetoslavova. 2018

机译：用于网络入侵检测和入侵防御系统的机器学习方法
6. Adaptively biased sequential importance sampling for rare events in reaction networks with comparison to exact solutions from finite buffer dCME method [O] . Youfang Cao, Jie Liang -1

机译：与反应有限网络dCME方法的精确解相比对反应网络中稀有事件进行自适应有偏连续重要性采样
7. A novel approach to detection of intrusions in computer networks via adaptive sequential and batch-sequential change-point detection methods [O] . Er G. Tartakovsky, Senior Member, Boris L. Rozovskii, 2006

机译：一种通过自适应顺序和批量顺序变化点检测方法检测计算机网络中入侵的新方法
8. Performance Analysis of Hierarchical Group Key Management Integrated with Adaptive Intrusion Detection in Mobile ad hoc Networks. [R] . Cho, J., Chen, I. 2016

机译：移动ad hoc网络中集成自适应入侵检测的分层组密钥管理性能分析。

Adaptive Sequential Methods for Detecting Network Intrusions

摘要

著录项

相似文献

相关主题

期刊订阅