مرکز منطقه ای اطلاع رساني علوم و فناوري - Anomaly intrusion detection method based on HMM

DocumentCode :

776411

Title :

Anomaly intrusion detection method based on HMM

Author :

Qiao, Y. ; Xin, X.W. ; Bin, Y. ; Ge, S.

Author_Institution :

Graduate Sch., Xidian Univ., Xi´´an, China

Volume :

Issue :

fYear :

2002

fDate :

6/20/2002 12:00:00 AM

Firstpage :

663

Lastpage :

664

Abstract :

An anomaly intrusion detection method based on HMM is presented. The system call trace of a UNIX privileged process is passed to a HMM to obtain state transition sequences. Preliminary experiments prove the state transition sequences can express the different mode between normal action and intrusion behaviour in a more stable and simple manner

Keywords :

Unix; hidden Markov models; security of data; HMM; UNIX; anomaly intrusion detection method; experiments; hidden Markov model; normal action; privileged process; state transition sequences; system call trace;

fLanguage :

English

Journal_Title :

Electronics Letters

Publisher :

iet

ISSN :

0013-5194

Type :

jour

DOI :

10.1049/el:20020467

Filename :

1015747

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=776411