Robust Support Vector Machines for Anomaly Detection in Computer Security.
作者: Yihua Liao , V. Rao Vemuri , Wenjie Hu
DOI:
关键词:
摘要: Using the 1998 DARPA BSM data set collected at MIT’s Lincoln Labs to study intrusion detection systems, performance of robust support vector machines (RVSMs) was compared with that conventional and nearest neighbor classifiers in separating normal usage profiles from intrusive computer programs. The results indicate superiority RSVMs not only terms high accuracy low false positives but also their generalization ability presence noise running time. Keywords—Intrusion detection, security, machines, noisy data.
ucdavis.edu 参考文章(18)
Aaron Schwartzbard, Anup K. Ghosh, A study in using neural networks for anomaly and misuse detection usenix security symposium. pp. 12- 12 ,(1999)
Terran Lane, Carla E Brodley, An Application of Machine Learning to Anomaly Detection ,(1999)
S J Templeton, V N P Dao, R Vemuri, Profiling users in the UNIX os environment ,(2000)
Eleazar Eskin, Anomaly Detection over Noisy Data using Learned Probability Distributions international conference on machine learning. pp. 255- 262 ,(2000) , 10.7916/D8C53SKF
E Eskin, Andrew Arnold, Michael Prerau, Leonid Portnoy, Sal Stolfo, A GEOMETRIC FRAMEWORK FOR UNSUPERVISED ANOMALY DETECTION: DETECTING INTRUSIONS IN UNLABELED DATA APPLICATIONS OF DATA MINING IN COMPUTER SECURITY. pp. 0- 0 ,(2002) , 10.7916/D8D50TQT
Philip K. Chan, Wenke Lee, Saivatore J. Stolfo, Learning Patterns from Unix Process Execution Traces for Intrusion Detection ,(1997) , 10.7916/D8B56RF2
Aaron Schwartzbard, Michael Schatz, Anup K. Ghosh, Learning program behavior profiles for intrusion detection ID'99 Proceedings of the 1st conference on Workshop on Intrusion Detection and Network Monitoring - Volume 1. pp. 6- 6 ,(1999)
D. Endler, Intrusion detection. Applying machine learning to Solaris audit data annual computer security applications conference. pp. 268- 279 ,(1998) , 10.1109/CSAC.1998.738647
R.P. Lippmann, D.J. Fried, I. Graf, J.W. Haines, K.R. Kendall, D. McClung, D. Weber, S.E. Webster, D. Wyschogrod, R.K. Cunningham, M.A. Zissman, Evaluating intrusion detection systems: the 1998 DARPA off-line intrusion detection evaluation darpa information survivability conference and exposition. ,vol. 2, pp. 12- 26 ,(2000) , 10.1109/DISCEX.2000.821506
Yihua Liao, V.Rao Vemuri, Use of K-Nearest Neighbor classifier for intrusion detection11An earlier version of this paper is to appear in the Proceedings of the 11th USENIX Security Symposium, San Francisco, CA, August 2002 Computers & Security. ,vol. 21, pp. 439- 448 ,(2002) , 10.1016/S0167-4048(02)00514-X