• DocumentCode
    776411
  • Title

    Anomaly intrusion detection method based on HMM

  • Author

    Qiao, Y. ; Xin, X.W. ; Bin, Y. ; Ge, S.

  • Author_Institution
    Graduate Sch., Xidian Univ., Xi´´an, China
  • Volume
    38
  • Issue
    13
  • fYear
    2002
  • fDate
    6/20/2002 12:00:00 AM
  • Firstpage
    663
  • Lastpage
    664
  • Abstract
    An anomaly intrusion detection method based on HMM is presented. The system call trace of a UNIX privileged process is passed to a HMM to obtain state transition sequences. Preliminary experiments prove the state transition sequences can express the different mode between normal action and intrusion behaviour in a more stable and simple manner
  • Keywords
    Unix; hidden Markov models; security of data; HMM; UNIX; anomaly intrusion detection method; experiments; hidden Markov model; normal action; privileged process; state transition sequences; system call trace;
  • fLanguage
    English
  • Journal_Title
    Electronics Letters
  • Publisher
    iet
  • ISSN
    0013-5194
  • Type

    jour

  • DOI
    10.1049/el:20020467
  • Filename
    1015747
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=776411