Autonomic Intrusion Detection System

Wei Wang 1 Thomas Guyet 2 Svein Knapskog 1
2 DREAM - Diagnosing, Recommending Actions and Modelling
Inria Rennes – Bretagne Atlantique , IRISA-D7 - GESTION DES DONNÉES ET DE LA CONNAISSANCE
Abstract : Abstract. We propose a novel framework of autonomic intrusion detection that fulfills online and adaptive intrusion detection in unlabeled audit data streams. The framework owns ability of self-managing: self-labeling, self-updating and self-adapting. Affinity Propagation (AP) uses the framework to learn a subject's behavior through dynamical clustering of the streaming data. The testing results with a large real HTTP log stream demonstrate the effectiveness and efficiency of the method.
Type de document :
Communication dans un congrès
Recent Advances in Intrusion Detection, Sep 2009, Saint Malo, France. 2009
Liste complète des métadonnées

https://hal.inria.fr/inria-00461382
Contributeur : Thomas Guyet <>
Soumis le : jeudi 4 mars 2010 - 15:21:50
Dernière modification le : mardi 16 janvier 2018 - 15:54:11

Identifiants

  • HAL Id : inria-00461382, version 1

Citation

Wei Wang, Thomas Guyet, Svein Knapskog. Autonomic Intrusion Detection System. Recent Advances in Intrusion Detection, Sep 2009, Saint Malo, France. 2009. 〈inria-00461382〉

Partager

Métriques

Consultations de la notice

172