Wei Wang and Thomas Guyet and Svein Knapskog
Autonomic Intrusion Detection System
, Symposium on recent advanced in intrusion detection (RAID) , Saint Malo , 359--361 , 2009 , Document

Abstract We propose a novel framework of autonomic intrusion detection that fulfills online and adaptive intrusion detection in unlabeled audit data streams. The framework owns ability of self-managing: self-labeling, self-updating and self-adapting. Affinity Propagation (AP) uses the framework to learn a subject's behavior through dynamical clustering of the streaming data. The testing results with a large real HTTP log stream demonstrate the effectiveness and efficiency of the method.


This web site is maintained by René Quiniou using the Weave system
from the Caravel project: http://www-caravel.inria.fr.
Last modification: 10-07-2011 09:54:25
Version française