NETWORK INTRUSION DETECTION: USING MDLCOMPRESS FOR DEEP PACKET INSPECTION

被引:0
|
作者
Eiland, E. Earl [1 ]
Evans, Scott C. [1 ]
Markham, T. Stephen [1 ]
Barnett, Bruce [1 ]
Impson, Jeremy [2 ]
Steinbrecher, Eric [2 ]
机构
[1] Gen Elect Global Res, Niskayuna, NY 12309 USA
[2] Lockheed Martin, Owego, NY USA
来源
2008 IEEE MILITARY COMMUNICATIONS CONFERENCE: MILCOM 2008, VOLS 1-7 | 2008年
关键词
D O I
暂无
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
We apply MDLcompress, a grammar inference engine, to Network Intrusion Detection (NID). We specifically target HTTP payload analysis of Deep Packet Inspection (DPI) utilizing the DARPA 1999 data sets for our normal network traffic base and create modern attack traffic using Nessus. Our approach accurately detected over 98% of the attacks compared with literature reports of approximately 95% accuracy rate on HTTP attacks.
引用
收藏
页码:994 / +
页数:3
相关论文
共 50 条
  • [1] Development of Deep Packet Inspection System for Network Traffic Analysis and Intrusion Detection
    Cheng, Zhihui
    Beshley, Mykola
    Beshley, Halyna
    Kochan, Orest
    Urikova, Oksana
    [J]. 15TH INTERNATIONAL CONFERENCE ON ADVANCED TRENDS IN RADIOELECTRONICS, TELECOMMUNICATIONS AND COMPUTER ENGINEERING (TCSET - 2020), 2020, : 877 - 881
  • [2] Performance Improvement of Deep Packet Inspection for Intrusion Detection
    Parvat, Thaksen J.
    Chandra, Pravin
    [J]. 2014 IEEE GLOBAL CONFERENCE ON WIRELESS COMPUTING AND NETWORKING (GCWCN), 2014, : 224 - 228
  • [3] A Novel Approach to Deep Packet Inspection for Intrusion Detection
    Parvat, Thaksen J.
    Chandra, Pravin
    [J]. INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING TECHNOLOGIES AND APPLICATIONS (ICACTA), 2015, 45 : 506 - 513
  • [4] An Integrative System for Deep Packet Inspection and Network Anomaly Detection & Defense
    Zhu Hongliang
    Tian Bin
    Wang Fei
    Xin Yang
    Yang Yixian
    [J]. 2011 7TH INTERNATIONAL CONFERENCE ON WIRELESS COMMUNICATIONS, NETWORKING AND MOBILE COMPUTING (WICOM), 2011,
  • [5] Intrusion Detection using Deep Belief Network
    Raza, Kamran
    Adil, Syed Hasan
    [J]. MEHRAN UNIVERSITY RESEARCH JOURNAL OF ENGINEERING AND TECHNOLOGY, 2014, 33 (04) : 485 - 491
  • [6] Intrusive Detection System Implementation Using Deep Packet Inspection
    Zoican, Sorin
    Zoican, Roxana
    [J]. 2013 11TH INTERNATIONAL CONFERENCE ON TELECOMMUNICATIONS IN MODERN SATELLITE, CABLE AND BROADCASTING SERVICES (TELSIKS), VOLS 1 AND 2, 2013, : 413 - 416
  • [7] A Software Deep Packet Inspection System for Network Traffic Analysis and Anomaly Detection
    Song, Wenguang
    Beshley, Mykola
    Przystupa, Krzysztof
    Beshley, Halyna
    Kochan, Orest
    Pryslupskyi, Andrii
    Pieniak, Daniel
    Su, Jun
    [J]. SENSORS, 2020, 20 (06)
  • [8] Mdlcompress for intrusion detection: Signature inference and masquerade attack
    Evans, Scott
    Eiland, Earl
    Markham, Stephen
    Impson, Jeremy
    Laczo, Adam
    [J]. 2007 IEEE MILITARY COMMUNICATIONS CONFERENCE, VOLS 1-8, 2007, : 1652 - +
  • [9] Efficient packet matching for gigabit network intrusion detection using TCAMs
    Gao, Ming
    Zhang, Kenong
    Lu, Jiahua
    [J]. 20TH INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS, VOL 1, PROCEEDINGS, 2006, : 249 - +
  • [10] Automated Anomaly Detection in Virtualized Services Using Deep Packet Inspection
    Wallschlaeger, Marcel
    Gulenko, Anton
    Schmidt, Florian
    Kao, Odej
    Liu, Feng
    [J]. 14TH INTERNATIONAL CONFERENCE ON MOBILE SYSTEMS AND PERVASIVE COMPUTING (MOBISPC 2017) / 12TH INTERNATIONAL CONFERENCE ON FUTURE NETWORKS AND COMMUNICATIONS (FNC 2017) / AFFILIATED WORKSHOPS, 2017, 110 : 510 - 515
12345