Detection of anomalous computer session activity
作者: H.S. Vaccaro , G.E. Liepins
DOI: 10.1109/SECPRI.1989.36302
关键词: Anomaly detection 、 Audit 、 Software 、 Computer science 、 Computer Session 、 Computer security 、 Categorical variable 、 Variance (accounting)
摘要: The authors discusses Wisdom and Sense (W&S), a computer security anomaly detection system. W&S is statistically based. It automatically generates rules from historical data and, in terms of those rules, identifies transactions that are at variance with historically established usage patterns. Issues addressed include how necessarily small sample all possible transactions, deals inherently categorical data, assists system officers their review audit logs. Preliminary results show the software does periodically detect anomalies high interest even though to be free such events. >
osti.gov
ieeecomputersociety.org参考文章(8)
Donald E. Knuth, The Art of Computer Programming, Volume 2: Seminumerical Algorithms ,(1981)
R.A. Howard, Decision analysis: Perspectives on inference, decision, and experimentation Proceedings of the IEEE. ,vol. 58, pp. 632- 643 ,(1970) , 10.1109/PROC.1970.7719
S.E. Smaha, Haystack: an intrusion detection system annual computer security applications conference. pp. 37- 44 ,(1988) , 10.1109/ACSAC.1988.113412
L.T. Heberlein, G.V. Dias, K.N. Levitt, B. Mukherjee, J. Wood, D. Wolber, A network security monitor ieee symposium on security and privacy. pp. 296- 304 ,(1990) , 10.1109/RISP.1990.63859
D.E. Denning, An Intrusion-Detection Model IEEE Transactions on Software Engineering. ,vol. 13, pp. 222- 232 ,(1987) , 10.1109/TSE.1987.232894
D.A. Patterson, P. Chen, G. Gibson, R.H. Katz, Introduction to redundant arrays of inexpensive disks (RAID) Digest of Papers. COMPCON Spring 89. Thirty-Fourth IEEE Computer Society International Conference: Intellectual Leverage. pp. 112- 117 ,(1989) , 10.1109/CMPCON.1989.301912
D.A. Patterson, P. Chen, G. Gibson, R.H. Katz, Introduction to redundant arrays of inexpensive disks (RAID) Digest of Papers. COMPCON Spring 89. Thirty-Fourth IEEE Computer Society International Conference: Intellectual Leverage. pp. 112- 117 ,(1989) , 10.1109/CMPCON.1989.301912
D.A. Patterson, P. Chen, G. Gibson, R.H. Katz, Introduction to redundant arrays of inexpensive disks (RAID) Digest of Papers. COMPCON Spring 89. Thirty-Fourth IEEE Computer Society International Conference: Intellectual Leverage. pp. 112- 117 ,(1989) , 10.1109/CMPCON.1989.301912