Dynamic learning method and adaptive normal behavior profile (NBP) architecture for providing fast protection of enterprise applications
作者: Michael Boodaei , Amichai Shulman , Shlomo Kremer
DOI:
关键词:
摘要: A dynamic learning method and an adaptive normal behavior profile (NBP) architecture for providing fast protection of enterprise applications are disclosed. The NBP includes a plurality items. Each item properties holding the descriptive values respective item. An application-level security system can identify prevent attacks targeted at by matching application events against least single in NBP.
google.de 参考文章(22)
Gregory St. Denis, Gaston Groos, Secure host computer internet gateway ,(2001)
Aaron Schwartzbard, Michael Schatz, Christoph C. Michael, Anup K. Ghosh, Computer intrusion detection system and method based on application monitoring ,(2000)
Michael Boodaei, Shlomo Kremer, Amichai Shulman, Method and apparatus for high-speed detection and blocking of zero day worm attacks ,(2004)
Oded Shmueli, David Konopnicki, W3QS: A Query System for the World-Wide Web very large data bases. pp. 54- 65 ,(1995)
Yukiko Yoshii, Chiaki Kawashima, Hitoshi Ono, Yoshiaki Kaku, Daisaku Takahashi, Hiroshi Suzuki, Operation management method and operation management server ,(2005)
Thomas E. Bernhard, Steven D. Shanklin, Gerald S. Lathem, Intrusion detection signature analysis using regular expressions and logical operators ,(1999)
Timothy Michals, Laura E. Whitmire, Gang Fang, Network device with unified management ,(1998)
Tarik Rahmanovic, Brock E. Tellier, Nishad P. Herath, James S. Magdych, John R. McDonald, Anthony C. Osborne, Secure gateway for analyzing textual content to identify a harmful impact on computer systems with known vulnerabilities ,(2001)
Vimal Vaidya, Dynamic signature inspection-based network intrusion detection ,(1998)
David E. Sloat, Christian D. Saether, Method and system for automatically updating the version of a set of files stored on content servers ,(1999)