mirage

Variable-length signatures for intrusion detection.

DSpace/Manakin Repository

 

Search DR-NTU


Advanced Search Subject Search

Browse

My Account

Variable-length signatures for intrusion detection.

Show simple item record

dc.contributor.author Li, Zhuowei.
dc.contributor.author Das, Amitabha.
dc.contributor.author Zhou, Jianying.
dc.contributor.author Patra, Jagdish Chandra.
dc.date.accessioned 2011-10-13T07:25:05Z
dc.date.available 2011-10-13T07:25:05Z
dc.date.copyright 2008
dc.date.issued 2011-10-13
dc.identifier.citation Li, Z., Das, A., Zhou, J., & Patra, J. C. (2008). Variable-length signatures for intrusion detection. Computer Systems Science and Engineering, 23.
dc.identifier.issn 0267-6192
dc.identifier.uri http://hdl.handle.net/10220/7265
dc.description.abstract Intrusion detection has become a basic infrastructure to guarantee the security of most internetworking applications. With more internetworking applications in the Internet nowadays, enormous volume of audit trails are produced for the analysis within intrusion detection. For this reason, it is critical to reduce the detection computation of intrusion detection to meet the realtime detection requirement. In this paper, using a formal intrusion detection framework, we propose a new concept of variable-length signature, along with feature selection, to compress the behavior models of our intrusion detection system, USAID[7], that achieves promising detection performance. Intuitively, compact behavior models will make the detection process computationally much cheaper. Our experimental results show that the proposed technique will degrade the detection rate of unknown intrusions, and fortunately, that it achieves a high detection rate for known intrusions with a significantly reduced false alarm rate. As a result, compared to USAID, the size of the behavior model is decreased by 99.52%, and the detection computation is cut down by 81.15% at least.
dc.format.extent 17 p.
dc.language.iso en
dc.relation.ispartofseries Computer systems science and engineering
dc.rights © CRL Publishing
dc.subject DRNTU::Engineering::Computer science and engineering::Computer systems organization::Computer-communication networks.
dc.title Variable-length signatures for intrusion detection.
dc.type Journal Article
dc.contributor.school School of Computer Engineering
dc.description.version Accepted version
dc.identifier.rims 138075

Files in this item

Files Size Format View

There are no files associated with this item.

This item appears in the following Collection(s)

Show simple item record

Statistics

Total views

All Items Views
Variable-length signatures for intrusion detection. 411

Total downloads

All Bitstreams Views
2008May_CompSystScienceand Engg_vol23_no3_pp183_192.PDF 8

Top country downloads

Country Code Views
Singapore 5

Top city downloads

city Views
Singapore 5