MORPHEUS: Motif oriented representations to purge hostile events from unlabeled sequences

VizSEC/DMSEC '04: Proceedings of the 2004 ACM Workshop on Visualization and Data Mining for Computer Security

Volumn , Issue , 2004, Pages 16-25

  Tandon, Gaurav ^a   Chan, Philip ^a   Mitra, Debasis ^a  

^a Florida Institute of Technology ^*  (United States)

Author keywords

Anomaly detection; Data cleaning; Motifs

Indexed keywords

ALGORITHMS; LEARNING SYSTEMS; MATHEMATICAL MODELS; ONLINE SYSTEMS; SECURITY OF DATA; TREES (MATHEMATICS);

ANOMALY DETECTION SYSTEMS; DATA CLEANING; MOTIFS; SEQUENCE SPACE;

DATA MINING;

EID: 20444456754     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (38)

1. C. Aggarwal and P. Yu. Outlier Detection for High Dimensional Data. SIGMOD, 2001.
2. J. Allen. Maintaining knowledge about temporal intervals. Communications of the ACM 26, 11, 832-843, 1983.
3. M. Bernaschi, E. Gabrielli and L.V. Mancini. Operating System Enhancement to Prevent the Misuse of System Calls. ACM CCS, 2001.
4. M. Breunig, H. Kriegel, R. Ng and J. Sander. LOF: Identifying Density-Based Local Outliers. SIGMOD, pp. 93-104, 2000.
5. P. Chan, M. Mahoney and M. Arshad. Learning Rules and Clusters for Anomaly Detection in Network Traffic. Managing Cyber Threats: Issues, Approaches and Challenges, V. Kumar, J. Srivastava and A. Lazarevic (editors), Kluwer, 2003.
6. W. Cohen. Fast Effective Rule Induction. ICML, 1995.
7. S. Coull, J. Branch, B. Szymanski and E. Breimer. Intrusion Detection: A Bioinformatics Approach. ACSAC, 2003.
8. D.E. Denning, An Intrusion Detection Model, IEEE Transactions on Software Engineering, SE-13:222-232, 1987.
9. E. Eskin, A. Arnold, M. Prerau, L. Portnoy and S. Stolfo. A Geometric Framework for Unsupervised Anomaly Detection: Detecting Intrusions in Unlabeled Data. In D. Barbara and S. Jajodia (editors), Applications of Data Mining in Computer Security, Kluwer, 2002.
10. S. Forrest, S. Hofmeyr, A. Somayaji and T. Longstaff. A Sense of Self for UNIX Processes. IEEE S&P, 1996.
11. A. Ghosh and A. Schwartzbard. A Study in Using Neural Networks for Anomaly and Misuse Detection. USENK Security Symposium, 1999.
12. A.J. Gibbs and G.A. McIntyre. The diagram, a method for comparing sequences. Its use with amino acid and nucleotide sequences. Eur. J. Biochem. 16:1-11, 1970.
13. N. Jiang, K. Hua and S. Sheu. Considering Both Intra-pattern and Inter-pattern Anomalies in Intrusion Detection. ICDM, 2002.
14. A. Jones and S. Li. Temporal Signatures for Intrusion Detection. ACSAC, 2001.
15. K. Kendell. A Database of Computer Attacks for the Evaluation of Intrusion Detection Systems. Masters Thesis, MIT 1999.
16. E. Knorr and R. Ng. Algorithms for Mining Distance-based Outliers in Large Data Sets. VLDB, 1998.
17. T. Lane and C.E. Bradley. Detecting the abnormal: Machine Learning in Computer Security. TR-ECE 97-1, Purdue University, 1997.
18. T. Lane and C.E. Bradley. Sequence Matching and Learning in Anomaly Detection for Computer, Security. AI Approaches to Fraud Detection and Risk Management, 1997.
19. A. Lazarevic, L. Ertoz, A. Ozgur, J. Srivastava and V. Kumar. A comparative study of anomaly detection schemes in network intrusion detection, SDM, 2003.
20. W. Lee, S. Stolfo and P. Chan. Learning Patterns from UNIX Process Execution Traces for Intrusion Detection. Workshop, AI Approaches to Fraud Detection and Risk Management, 1997.
21. Y. Liao and R. Vemuri. Use of Text Categorization Techniques for Intrusion Detection, 11th USENDC Security Symposium, 2002.
22. R. Lippmann, J. Haines, D. Fried, J. Korba and K. Das. The 1999 DARPA Off-Line Intrusion Detection Evaluation. Computer Networks (34) 579-595, 2000.
23. P.C. Mahalanobis. On Tests and Measures of Groups Divergence. International Journal of the Asiatic Society, Vol. 26:541, 1930.
24. M. Mahoney and P. Chan. Learning Rules for Anomaly Detection of Hostile Network Traffic, ICDM, 2003.
25. G. Mazeroff, Victor De Cerqueira, J. Gregor and M.G. Thomason. Probabilistic Trees and Automata for Application Behavior Modeling. 41st ACM Southeast Regional Conference Proceedings, 2003.
26. W. Osser and A. Noordergraaf. Auditing in the Solaris 8 Operating Environment. Sun Blueprints Online.
27. L. Portnoy. Intrusion Detection with Unlabeled Data Using Clustering, Undergraduate Thesis, Columbia University, 2000.
28. S. Ramaswamy, R. Rastogi and K. Shim, Efficient Algorithms for Mining Outliers from Large Data Sets, Proceedings of the ACM SIGMOD Conference, 2000.
29. I. Rigoutsos and A. Floratos. Combinatorial pattern discovery in biological sequences. Bioinformatics, 14(1):55-67, 1998.
30. S. Salvador, P. Chan and J. Brodie. Learning States and Rules for Time Series Anomaly Detection. FLAIRS, 2004.
31. R. Sekar, M. Bendre, D. Dhurjati and P. Bollineni. A Fast Automaton-based Method for Detecting Anomalous Program Behaviors. IEEE S&P, 2001.
32. K. Tan & R. Maxion. "Why 6?" Defining the Operational Limits of slide. IEEE S&P, 2002.
33. G. Tandon and P. Chan. Learning Rules from System Call Arguments and Sequences for Anomaly Detection. DMSEC, 2003.
34. D. Wagner and P. Soto. Mimicry Attacks on Host-Based Intrusion Detection Systems. ACM CCS, 2002.
35. C. Wartender, S. Forrest and B. Pearlmutter. Detecting Intrusions Using System Calls: Alternative Data Models. IEEE S&P, 1999.
36. A. Wespi, M. Dacier and H. Debar. An Intrusion-Detection System Based on the Teiresias Pattern-Discovery Algorithm. Proc. EICAR, 1999.
37. A. Wespi, M. Dacier and H. Debar. Intrusion detection using variable-length audit trail patterns. RAID, 2000.
38. J.A. Whittaker and A. De Vivanco. Neutralizing Windows-based malicious mobile code. ACM Symposium on Applied Computing, 2002.