Profiler-2000: Attacking the Insider Threat
作者: R. A. Maxion , K. M. Tan , S. S. Killourhy , T. N. Townsend
DOI: 10.21236/ADA439600
关键词:
摘要: Abstract : The Profiler project was concerned with fundamental theoretical and measurement issues in the field of anomaly/intrusion detection, particularly as directed at problem insiders. Major addressed were: scientifically sound foundations for divers anomaly detectors; tools methods assessment detector effectiveness; controlled benchmark data sets testing. accomplishments determining how interaction between architectural aspects a detection algorithm, such mechanism coverage, can result unanticipated vulnerabilities that allow an adversary to undermine detector; production calibrated test sets; rigorous error analysis insider-threat environment.
sci-hub.st 参考文章(17)
Haym Hirsh, Brian D. Davison, Predicting Sequences of User Actions ,(1998)
Michael J. Pazzani, Pedro M. Domingos, Beyond Independence: Conditions for the Optimality of the Simple Bayesian Classifier. international conference on machine learning. pp. 105- 112 ,(1996)
John Arthur Swets, Ronald M. Pickett, Evaluation of diagnostic systems : methods from signal detection theory Academic Press. ,(1982)
Kamal Nigam, Andrew McCallum, A comparison of event models for naive bayes text classification national conference on artificial intelligence. pp. 41- 48 ,(1998)
Aaron Schwartzbard, Michael Schatz, Anup K. Ghosh, Learning program behavior profiles for intrusion detection ID'99 Proceedings of the 1st conference on Workshop on Intrusion Detection and Network Monitoring - Volume 1. pp. 6- 6 ,(1999)
Teresa F. Lunt, A survey of intrusion detection techniques Computers & Security. ,vol. 12, pp. 405- 418 ,(1993) , 10.1016/0167-4048(93)90029-5
Wen-Hua Ju, Yehuda Vardi, A Hybrid High-Order Markov Chain Model for Computer Intrusion Detection Journal of Computational and Graphical Statistics. ,vol. 10, pp. 277- 295 ,(2001) , 10.1198/10618600152628068
Yehuda Vardi, Martin Theusan, Alan F. Karr, Wen-Hua Ju, William DuMouchel, Matthias Schonlau, Computer Intrusion: Detecting Masquerades Statistical Science. ,vol. 16, pp. 58- 74 ,(2001) , 10.1214/SS/998929476
Hervé Debar, Marc Dacier, Andreas Wespi, Towards a taxonomy of intrusion-detection systems Computer Networks. ,vol. 31, pp. 805- 822 ,(1999) , 10.1016/S1389-1286(98)00017-6
Matthias Schonlau, Martin Theus, Detecting masquerades in intrusion detection based on unpopular commands Information Processing Letters. ,vol. 76, pp. 33- 38 ,(2000) , 10.1016/S0020-0190(00)00122-8