A Self-Organizing Map and its Modeling for Discovering Malignant Network Traffic

被引：0

作者：

Langin, Chet ^{[1
]}

Zhou, Hongbo ^{[1
]}

Rahimi, Shahram ^{[1
]}

Gupta, Bidyut ^{[1
]}

Zargham, Mehdi ^{[1
]}

Sayeh, Mohammad R. ^{[2
]}

机构：

[1] So Illinois Univ, Dept Comp Sci, Carbondale, IL 62901 USA

[2] Southern Illinois Univ, Dept Elect & Comp Engn, Carbondale, IL 62901 USA

来源：

IEEE SYMPOSIUM ON COMPUTATIONAL INTELLIGENCE IN CYBER SECURITY | 2009年

关键词：

ANOMALY DETECTION;

D O I：

暂无

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Model-based intrusion detection and knowledge discovery are combined to cluster and classify P2P botnet traffic and other malignant network activity by using a Self-Organizing Map (SOM) self-trained on denied Internet firewall log entries. The SOM analyzed new firewall log entries in a case study to classify similar network activity, and discovered previously unknown local P2P bot traffic and other security issues.

引用

页码：122 / +

页数：2

共 38 条

[1] [Anonymous], 2000, MULTIPLE SELF ORG MA
[2] [Anonymous], WIRED
[3] [Anonymous], THESIS POLITECNICO M
[4] Incorporating soft computing techniques into a probabilistic intrusion detection system
Cho, SB
[J]. IEEE TRANSACTIONS ON SYSTEMS MAN AND CYBERNETICS PART C-APPLICATIONS AND REVIEWS, 2002, 32 (02): : 154 - 160
[5] Efficient anomaly detection by modeling privilege flows using hidden Markov model
Cho, SB
Park, HJ
[J]. COMPUTERS & SECURITY, 2003, 22 (01) : 45 - 55
[6] Cooke Evan, 2005, STEPS RED UNW TRAFF
[7] Real-time anomaly detection using soft-computing techniques
Copeland, JA
Garcia, RC
[J]. IEEE SOUTHEASTCON 2001: ENGINEERING THE FUTURE, PROCEEDINGS, 2001, : 105 - 108
[8] DAGON D, 2008, ADV INFORM SECURITY, P143
[9] Denning D. E., 1986, Proceedings of the 1986 IEEE Symposium on Security and Privacy (Cat. No.86CH2292-1), P118
[10] An intelligent intrusion detection system (IDS) for anomaly and misuse detection in computer networks
Depren, O
Topallar, M
Anarim, E
Ciliz, MK
[J]. EXPERT SYSTEMS WITH APPLICATIONS, 2005, 29 (04) : 713 - 722

← 1 2 3 4 →