SCOPUS 정보 검색 플랫폼

International Journal of Network Security

Volumn 1, Issue 3, 2005, Pages 138-146

The utility of partial knowledge in behavior models: An evaluation for intrusion detection

a NANYANG TECHNOLOGICAL UNIVERSITY (Singapore)

Author keywords

Intrusion detection; Machine learning; Model evaluation; Model generalization; Security

Indexed keywords

BEHAVIOR IDENTIFICATIONS; BEHAVIOR MODEL; BEHAVIOR SIGNATURE; DETECTION CAPABILITY; M OF N FEATURES; MODEL EVALUATION; MODEL GENERALIZATION; PARTIAL KNOWLEDGE; SECURITY;

LEARNING SYSTEMS; NETWORK SECURITY; SAFETY ENGINEERING;

INTRUSION DETECTION;

EID: 77949272825 PISSN: 1816353X EISSN: 18163548 Source Type: Journal
DOI: None Document Type: Article

Times cited : (3)

References (19)

1
- 17444401173
- Extending the computer defense immune system: Network intrusion detection with a multi-objective evolutionary programming approach
- K. P. Anchor, J. B. Zydallis, G. H. Gunsch, and G. B. Lamont, "Extending the computer defense immune system: Network intrusion detection with a multi-objective evolutionary programming approach," in ICARIS 2002: 1st International Conference on Artificial Immune Systems Conference Proceedings, pp. 12-21, 2002.
- (2002) in ICARIS 2002 1st International Conference on Artificial Immune Systems Conference Proceedings , pp. 12-21
- Anchor, K.P.¹ Zydallis, J.B.² Gunsch, G.H.³ Lamont, G.B.⁴

2
- 0033281215
- The base-rate fallacy and its implications for the difficulty of intrusion detection
- S. Axelsson, "The base-rate fallacy and its implications for the difficulty of intrusion detection," in Proceedings of the 6th ACM conference on Computer and communications security, pp. 1-7, 1999.
- (1999) in Proceedings of the 6th ACM conference on Computer and communications security , pp. 1-7
- Axelsson, S.¹

3
- 2942749266
- BlueBox: A policy-driven, host-based intrusion detection system
- May
- S. N. Chari and P. Cheng, "BlueBox: A policy-driven, host-based intrusion detection system," ACM Transaction on Infomation and System Security, vol. 6, no. 2, pp. 173-200, May 2003.
- (2003) ACM Transaction on Infomation and System Securit , vol.6 , Issue.2 , pp. 173-200
- Chari, S.N.¹ Cheng, P.²

4
- 0036613083
- An immunity-based technique to characterize intrusions in computer net-works
- D. Dasgupta and F. González, "An immunity-based technique to characterize intrusions in computer net-works," IEEE Transactions on Evol. Comput., vol. 6, no. 3, pp. 1081-1088, 2002.
- (2002) IEEE Transactions on Evol. Comput. , vol.6 , Issue.3 , pp. 1081-1088
- Dasgupta, D.¹ González, F.²

5
- 0034226287
- A revised taxonomy for intrusion detection systems
- H. Debar, M. Dacier, and A. Wespi, "A revised taxonomy for intrusion detection systems," Annales des Telecommunications, vol. 55, no. 7-8, pp. 361-378, 2000.
- (2000) Annales des Telecommunications , vol.55 , Issue.7-8 , pp. 361-378
- Debar, H.¹ Dacier, M.² Wespi, A.³

6
- 0023294428
- An intrusion detection model
- Feb
- D. E. Denning, "An intrusion detection model," IEEE Transaction on Software Engineering, vol. SE-13, no. 2, pp. 222-232, Feb. 1987.
- (1987) IEEE Transaction on Software Engineering , vol.SE13 , Issue.2 , pp. 222-232
- Denning, D.E.¹

7
- 0141797880
- A geometric framework for unsupervised anomaly detection: Detecting intrusions in unlabeled data
- D Barbara and S. Jajodia (editors), Kluwer
- E. Eskin, A. Arnold, M. Prerau, L. Portnoy, and S. Stolfo, "A geometric framework for unsupervised anomaly detection: Detecting intrusions in unlabeled data," D. Barbara and S. Jajodia (editors), in em Applications of Data Mining in Computer Security, Kluwer, 2002.
- (2002) in em Applications of Data Mining in Computer Securit
- Eskin, E.¹ Arnold, A.² Prerau, M.³ Portnoy, L.⁴ Stolfo, S.⁵

8
- 0032313923
- Intrusion detection using sequences of system calls
- S. A. Hofmeyr, S. Forrest, and A. Somayaji, "Intrusion detection using sequences of system calls," Journal of Computer Security, vol. 6, no. 3, pp. 151-180, 1998.
- (1998) Journal of Computer Security , vol.6 , Issue.3 , pp. 151-180
- Hofmeyr, S.A.¹ Forrest, S.² Somayaji, A.³

9
- 0004118981
- SRI Anual Report A010, SRI International, Computer Science Laboratory, March
- H. Javits and A. Valdes, The NIDES Statistical Component: Description and Justification, SRI Anual Report A010, SRI International, Computer Science Laboratory, March 1993.
- (1993) The NIDES Statistical Component: Description and Justification
- Javits, H.¹ Valdes, A.²

10
- 0035616570
- A hybrid high-order markov chain model for computer intrusion detection
- W. Ju and Y. Vardi, "A hybrid high-order markov chain model for computer intrusion detection," Journal of Computational and Graphical Statistics, vol. 10, no. 2, pp. 277-295, 2001.
- (2001) Journal of Computational and Graphical Statistics , vol.10 , Issue.2 , pp. 277-295
- Ju, W.¹ Vardi, Y.²

11
- 2942608134
- Technical Report No. CUCS-002-00, Computer Science, Columbia University
- W. Lee, M. Miller, and S. Stolfo, Toward Cost-sensitive Modeling for Intrusion Detection, Technical Report No. CUCS-002-00, Computer Science, Columbia University, 2000.
- (2000) Toward Cost-sensitive Modeling for Intrusion Detection
- Lee, W.¹ Miller, M.² Stolfo, S.³

12
- 84885774862
- A framework for contructing features and models for intrusion detection systems
- Nov
- W. Lee and S. J. Stolfo, "A framework for contructing features and models for intrusion detection sys-tems," ACM Transactions on Information and System Security, vol. 3, no. 4, pp. 227-261, Nov. 2000.
- (2000) ACM Transactions on Information and System Security , vol.3 , Issue.4 , pp. 227-261
- Lee, W.¹ Stolfo, S.J.²

13
- 85084160262
- Using text categorization techniques for intrusion detection
- Aug. 2002
- Y. Liao and V. R. Vemuri, "Using text categorization techniques for intrusion detection," in Usenix: Security 2002, pp. 51-59, Aug. 2002.
- in Usenix: Security , pp. 51-59
- Liao, Y.¹ Vemuri, V.R.²

14
- 19544375196
- Learning nonstationary models of normal network traffic for detecting novel attacks
- July 23-26
- M. V. Mahoney and P. K. Chan, "Learning nonstationary models of normal network traffic for detecting novel attacks," in SIGKDD 2002, pp. 23-26, July 23-26 2002.
- (2002) in SIGKDD , vol.2002 , pp. 23-26
- Mahoney, M.V.¹ Chan, P.K.²

15
- 0036804085
- Network intrusion and fault detection: A statistical anomaly approach
- Oct
- C. Manikopoulos and S. Papavassiliou, "Network intrusion and fault detection: A statistical anomaly approach," IEEE Communications Magazine, vol. 40, no. 10, pp. 76-82, Oct. 2002.
- (2002) IEEE Communications Magazine , vol.40 , Issue.10 , pp. 7682
- Manikopoulos, C.¹ Papavassiliou, S.²

16
- 35248842651
- Detecting anomalous network traffic with self-organizing maps
- Sep. 8-10
- M. Ramadas, S. Ostermann, and B. Tjaden, "Detecting anomalous network traffic with self-organizing maps," in Sixth International Symposium on Recent Advances in Intrusion Detection (RAID 2003), Pitts-burgh, Pennsylvania, pp. 36-54, Sep. 8-10 2003.
- (2003) in Sixth International Symposium on Recent Advances in Intrusion Detection (RAID 2003), Pitts-burgh, Pennsylvania , pp. 36-54
- Ramadas, M.¹ Ostermann, S.² Tjaden, B.³

17
- 0034829697
- A fast automaton-based method for detecting anomalous program behaviors
- R. Sekar, M. Bendre, D. Dhurjati, and P. Bolli-neni, "A fast automaton-based method for detecting anomalous program behaviors," in Proceedings of the 2000 IEEE Symposium on Security and Privacy, pp. 144-155, 2000.
- (2000) in Proceedings of the 2000 IEEE Symposium on Security and Privacy , pp. 144-155
- Sekar, R.¹ Bendre, M.² Dhurjati, D.³ Bolli-neni, P.⁴

18
- 35048885009
- Anomalyous payload-based network intrusion detection
- K. Wang and S. J. Stolfo, "Anomalyous payload-based network intrusion detection," in Proceedings of RAID, pp. 203-222, 2004.
- (2004) in Proceedings of RAID , pp. 203-222
- Wang, K.¹ Stolfo, S.J.²

19
- 84874709035
- Wikipedia, Def
- Wikipedia, Def. of 'Intrusion-Detection System', http://en.wikipedia.org/w/wiki.phtml?title=Intrusion-detection_system.
- of 'Intrusion-Detection System'

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.