DocumentCode :
3632059
Title :
Maximum entropy based IDS using header and payload information
Author :
Derya Erhan;F. Kerem Harmanci;Emin Anarim
Author_Institution :
Elektrik ve Elektronik M?hendisli?i B?l?m?, Bo?azi?i ?niversitesi, ?stanbul, Turkey
fYear :
2009
fDate :
4/1/2009 12:00:00 AM
Firstpage :
540
Lastpage :
543
Abstract :
In this work, a new maximum entropy based intrusion detection system that combines data from payload and packet headers, is proposed. This combined method uses sniffed data from a network to detect intrusions to or any other anomaly in that network. This method is tested with DARPA 1999 intrusion detection evaluation (IDEVAL) Dataset, which is the largest dataset available including whole payloads.
Keywords :
"Entropy","Intrusion detection","Payloads","Testing","TCPIP","Ethernet networks","Organizing"
Publisher :
ieee
Conference_Titel :
Signal Processing and Communications Applications Conference, 2009. SIU 2009. IEEE 17th
ISSN :
2165-0608
Print_ISBN :
978-1-4244-4435-9
Type :
conf
DOI :
10.1109/SIU.2009.5136452
Filename :
5136452
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3632059
بازگشت