Abstract

This article describes variants of two state-based intrusion detection algorithms from Michael and Ghosh [2000] and Ghosh et al. [2000], and gives experimental results on their performance. The algorithms detect anomalies in execution audit data. One is a simply constructed finite-state machine, and the other two monitor statistical deviations from normal program behavior. The performance of these algorithms is evaluated as a function of the amount of available training data, and they are compared to the well-known intrusion detection technique of looking for novel n -grams in computer audit data.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Two state-based approaches to program-based anomaly detection
C.C Michael ... A Ghosh
-
C.C Michael, et. al.C.C Michael ... A Ghosh
11 Dec 2000
Probabilistic techniques for intrusion detection based on computer audit data
Nong Ye ... Xiangyang Li
IEEE Transactions on Systems, Man, and Cybernetics - Part A: Systems and Humans | VOL. 31
Nong Ye, et. al. Nong Ye ... Xiangyang Li
01 Jul 2001
Profiling program behavior for anomaly intrusion detection based on the transition and frequency property of computer audit data
Wei Wang ... Liwei Yang
Computers & Security | VOL. 25
Wei Wang, et. al.Wei Wang ... Liwei Yang
25 Jul 2006
Grid‐ and dummy‐cluster‐based learning of normal and intrusive clusters for computer intrusion detection
Xiangyang Li ... Nong Ye
Quality and Reliability Engineering International | VOL. 18
Xiangyang Li, et. al.Xiangyang Li ... Nong Ye
01 May 2002
View more papers

More From: ACM Transactions on Information and System Security

Paper Title
Journal
Date
Author
Designing Password Policies for Strength and Usability
Richard Shay ... Michelle L Mazurek
ACM Transactions on Information and System Security | VOL. 18
Richard Shay, et. al.Richard Shay ... Michelle L Mazurek
06 May 2016
-
-
ACM Transactions on Information and System Security | VOL. 18
--
06 May 2016
Toward Robotic Robbery on the Touch Screen
Abdul Serwadda ... Zibo Wang
ACM Transactions on Information and System Security | VOL. 18
Abdul Serwadda, et. al.Abdul Serwadda ... Zibo Wang
06 May 2016
General Graph Data De-Anonymization
Shouling Ji ... Weiqing Li
ACM Transactions on Information and System Security | VOL. 18
Shouling Ji, et. al.Shouling Ji ... Weiqing Li
21 Apr 2016
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.