Statistical Process Control for computer intrusion detection

被引：0

作者：

Ye, N ^{[1
]}

Emran, SM ^{[1
]}

Li, MY ^{[1
]}

Chen, Q ^{[1
]}

机构：

[1] Arizona State Univ, Tempe, AZ 85287 USA

来源：

DISCEX'01: DARPA INFORMATION SURVIVABILITY CONFERENCE & EXPOSITION II, VOL I, PROCEEDINGS | 2001年

关键词：

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper describes the architecture of a distributed, host-based Intrusion Detection System (IDS) that we have developed at the Information and Systems Assurance Laboratory (ISA), Arizona State University. Hence, we refer to this system as ISA-IDS. ISA-IDS is developed based on Statistical Process Control (SPC). In ISA-IDS we employ two intrusion detection techniques. One is an anomaly detection technique called Chi-square. Another is a misuse detection technique called Clustering. Each technique determines an Intrusion Warning (IW) level for each audit event. The IW levels from different intrusion detection techniques are then combined using a fusion technique into a composite IW level, 0 for normal, I for intrusive, and any value in between to signify the intrusiveness. In this paper we also present the intrusion detection performance of Chi-square and Clustering techniques.

引用

页码：3 / 14

页数：12

共 50 条

[41] Flatness and Symmetry Threshold Detection Using Statistical Process Control
Able, C.
Hampton, C.
Baydush, A.
MEDICAL PHYSICS, 2012, 39 (06) : 3751 - 3751
[42] Enhanced correlation in an intrusion detection process
Benferhat, S
Autrel, F
Cuppens, F
COMPUTER NETWORK SECURITY, 2003, 2776 : 157 - 170
[43] Computer intrusion detection with classification and anomaly detection, using SVMs
Fugate, M
Gattiker, JR
INTERNATIONAL JOURNAL OF PATTERN RECOGNITION AND ARTIFICIAL INTELLIGENCE, 2003, 17 (03) : 441 - 458
[44] The paradigm shift in statistical process control due to the latest developments in computer technology
Dogdu, S
Santos, DL
COMPUTERS & INDUSTRIAL ENGINEERING, 1998, 35 (1-2) : 177 - 180
[45] Paradigm shift in statistical process control due to the latest developments in computer technology
State Univ of New York, Binghamton, United States
Comput Ind Eng, 1-2 (177-180):
[46] A COMPUTER-AUTOMATED STATISTICAL PROCESS-CONTROL METHOD WITH TIMELY RESPONSE
PAPADAKIS, EP
ENGINEERING COSTS AND PRODUCTION ECONOMICS, 1990, 18 (03): : 301 - 310
[47] Statistical process control
Chemical Engineering (New York), 2000, 107 (03):
[48] On the statistical distribution of processing times in network intrusion detection
Cabrera, JBD
Gosar, J
Lee, W
Mehra, RK
2004 43RD IEEE CONFERENCE ON DECISION AND CONTROL (CDC), VOLS 1-5, 2004, : 75 - 80
[49] A Simple Statistical Analysis Approach for Intrusion Detection System
Waskita, A. A.
Suhartanto, H.
Persadha, P. D.
Handoko, L. T.
2013 IEEE CONFERENCE ON SYSTEMS, PROCESS & CONTROL (ICSPC), 2013, : 193 - 197
[50] Statistical model applied to NetFlow for network intrusion detection
Proto A.
Alexandre L.A.
Batista M.L.
Oliveira I.L.
Cansian A.M.
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2010, 6480 (PART 2): : 179 - 191

← 1 2 3 4 5 →