• DocumentCode
    3140025
  • Title

    HMMs (Hidden Markov models) based on anomaly intrusion detection method

  • Author

    Gao, Bo ; Ma, Hui Ye ; Yang, Yu Hang

  • Author_Institution
    Dept. of Electron. Eng., Shanghai Jiao Tong Univ., China
  • Volume
    1
  • fYear
    2002
  • fDate
    2002
  • Firstpage
    381
  • Abstract
    In this paper we discuss our research in developing anomaly detecting method for intrusion detection. The key idea is to use HMMs (Hidden Markov models) to learn the (normal and abnormal) patterns of Unix processes. These patterns can be used to detect anomalies and known intrusion. Using experiments on the mail-sending system call data, we demonstrate that we can construct concise and accurate classifiers to detect intrusion action.
  • Keywords
    Unix; finite state machines; hidden Markov models; learning (artificial intelligence); safety systems; security of data; HMMs; Unix processes; abnormal patterns; anomaly intrusion detection method; concise accurate classifiers; finite state machine; hidden Markov models; intrusion action; machine learning; mail-sending system call data; normal patterns; Automata; Buildings; Databases; Event detection; Hidden Markov models; Intrusion detection; Machine learning; Power system modeling; Sequences; Specification languages;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Machine Learning and Cybernetics, 2002. Proceedings. 2002 International Conference on
  • Print_ISBN
    0-7803-7508-4
  • Type

    conf

  • DOI
    10.1109/ICMLC.2002.1176779
  • Filename
    1176779
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3140025