Approaches to online learning and concept drift for user identification in computer security (1998) [30 citations — 3 self]
Popular Tags
No tags have been applied to this document.
BibTeX | Add To MetaCart
@INPROCEEDINGS{Lane98approachesto,author = {Terran Lane and Carla E. Brodley},
title = {Approaches to online learning and concept drift for user identification in computer security},
booktitle = {In KDD},
year = {1998},
pages = {259--263}
}
Years of Citing Articles
Abstract:
The task in the computer security domain of anomaly detection is to characterize the behaviors of a computer user (the valid', or normal ' user) so that unusual occurrences can be detected by comparison of the current input stream to the valid user's profile. This task requires an online learning system that can respond to concept drift and handle discrete non-metric time sequence data. We present an architecture for online learning in the anomaly detection domain and address the issues of incremental updating of system parameters and instance selection. We demonstrate a method for measuring direction and magnitude of concept drift in the classification space and present and evaluate approaches to the above stated issues which make use of the drift measurement.
Citations
| 794 | Instance-based learning algorithms – Aha, Kibler, et al. - 1991 |
| 316 | A Sense of Self for UNIX Processes – Forrest - 1996 |
| 251 | An Intrusion-Detection Model – Denning - 1990 |
| 151 | Heterogeneous Uncertainty Sampling for Supervised Learning – Lewis, Catlett - 1994 |
| 107 | Classification and Detection of Computer Intrusions – Kumar - 1995 |
| 71 | Learning Patterns from Unix Process Execution Traces for Intrusion Detection – Lee, Stolfo, et al. - 1997 |
| 45 | Sequence Matching and Learning in Anomaly Detection for Computer Security – LANE, BRODLEY - 1997 |
| 28 | An application of Machine Learning to Anomaly Detection – Lane, Brodly - 1997 |
| 23 | IDES: An intelligent system for detecting intruders – Lunt - 1990 |
| 3 | Classification and detection of computer intrusions. Doctoral dissertation – Kumar - 1995 |
| 1 | A sense of self for Unix processes – unknown authors - 1996 |
