Terran D. Lane  Home/Search
Context Related
Links: ACM | mit.edu/people/terran/re...thesis.ps.gz Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: mit.edu/people/terran/r...publist (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : : xv 1 (Update)
Context of citations to this paper: More
...exhibits stable patterns when observed over a period of time. There are multiple approaches to such anomaly detection [5, 7, 13, 14, 15, 22, 23, 26], and most of them work by building a model or profile of the system that reflects its normal behavior. A simple approach is...
.... traditionally build profiles of normal user behavior and then search for the unusual sequences of events for consideration [DS98, FP99, Lan00] Unlike most systems that perform anomaly detection by audit trail processing o# line, our method works online, incrementally updating...
Cited by: More
Misuse Detection for Information Retrieval Systems - Rebecca Cathey Ling (Correct)
Anomaly Detection Using Real-Valued Negative Selection - Gonzalez, Dasgupta (2004) (Correct)
ADMIT: Anomaly-based Data Mining for Intrusions - Sequeira, Zaki (Correct)
Similar documents (at the sentence level):
8.6%: Machine Learning Techniques for the Domain of Anomaly Detection.. - Lane (1998) (Correct)
Active bibliography (related documents): More All
1.9: Temporal Sequence Learning and Data Reduction for Anomaly Detection - Lane (1998) (Correct)
1.1: Hidden Markov Models for Human/Computer Interface Modeling - Lane (1999) (Correct)
0.7: An Architecture for Intrusion Detection using.. - Balasubramaniyan.. (1998) (Correct)
Similar documents based on text: More All
0.2: IGR -- Report -- Guido Bugmann - Project: GR/M90023/01 - Instruction-Based Learning.. (Correct)
0.0: Carnap, Quine and the Fate of Metaphysics - Price (Correct)
0.0: Understanding Imperfection - Zwick (2000) (Correct)
Related documents from co-citation: More All
3: Data mining approaches for intrusion detection - Lee, Stolfo - 1998
2: The case against accuracy estimation for comparing induction algorithms - Provost, Fawcett et al. - 1998
2: A Pattern Matching Model for Misuse Intrusion Detection - Kumar, Spafford - 1994
BibTeX entry: (Update)
T. Lane. Machine Learning Techniques For The Computer Security. PhD thesis, Purdue University, 200. http://citeseer.ist.psu.edu/lane00machine.html More
@misc{ lane-machine,
author = "T. Lane",
title = "Machine Learning Techniques For The Computer Security",
text = "T. Lane. Machine Learning Techniques For The Computer Security. PhD thesis,
Purdue University, 200.",
url = "citeseer.ist.psu.edu/lane00machine.html" }
Citations (may not include all citations):3972 Introduction to algorithms (context) - Cormen, Leiserson et al. - 1992 ACM
2528 Maximum likelihood from incomplete data via the EM algorithm (context) - Dempster, Laird et al. - 1977
2177 Programs for machine learning (context) - Quinlan - 1993
2177 Programs for machine learning (context) - Quinlan - 1993
1362 A tutorial on Hidden Markov Models and selected applications.. (context) - Rabiner - 1989 ACM
1359 Induction of decision trees (context) - Quinlan - 1986 ACM DBLP
654 Fundamentals of Digital Image Processing (context) - Jain - 1989 ACM
653 Fundamentals of Speech Recognition (context) - Rabiner, Juang - 1993
509 A decision-theoretic generalization of on-line learning and .. - Freund, Schapire - 1997 ACM DBLP
503 Instance-based learning algorithms (context) - Aha, Kibler et al. - 1991
443 Discrete-Time Signal Processing (context) - Oppenheim, Schafer - 1989
431 A tutorial on support vector machines for pattern recognitio.. - Burges - 1998 ACM DBLP
351 Learning Bayesian networks: The combination of knowledge and.. - Heckerman, Geiger et al. - 1994 DBLP
334 Operating System Concepts (context) - Silberschatz, Peterson - 1991 ACM
228 Maximum likelihood linear regression for speaker adaptation .. (context) - Leggetter, Woodland - 1995
142 A sense of self for Unix processes - Forrest, Hofmeyr et al. - 1996 ACM
134 Statistical Inference (context) - Casella, Berger - 1990 ACM
133 IEEE Transactions on Software Engineering (context) - Denning, model - 1987
131 The estimation of stochastic context-free grammars using the.. (context) - Lari, Young - 1990
121 Network intrusion detection (context) - Mukherjee, Heberlein et al. - 1994 ACM
105 Probabilistic independence networks for hidden Markov models - Smyth, Heckerman et al. - 1997
102 Statistical Pattern Recognition (context) - Fukunaga - 1990
96 The need for biases in learning generalizations - Mitchell - 1980
94 Clustering to minimize the maximum intercluster distance (context) - Gonzalez - 1985 DBLP
87 ective rule induction (context) - Cohen - 1995
79 Computer security threat monitoring and surveillance (context) - Anderson - 1980
75 Heterogeneous uncertainty sampling for supervised learning - Lewis, Catlett - 1994
74 Computer immunology - Forrest, Hofmeyr et al. - 1996 ACM DBLP
68 A network security monitor (context) - Heberlein, Dias et al. - 1990
63 An architecture for intrusion detection using autonomous age.. - Balasubramaniyan, Garcia-Fernandez et al. - 1998 ACM DBLP
63 Next-generation Intrusion-Detection Expert System - Anderson, Frivold et al. - 1995
51 The expectation-maximization algorithm (context) - Moon - 1996
44 Concept acquisition through representational adjustment (context) - Schlimmer - 1987 ACM
44 Multitask learning - Caruana - 1997
41 Finding similar time series - Das, Gunopulos et al. - 1997
41 Expert systems in intrusion detection: A case study (context) - Sebring, Shellhouse et al. - 1988
41 The SRI IDES statistical anomaly detector (context) - Javitz, Valdes - 1991 DBLP
39 Continual Learning in Reinforcement Environments - Ring - 1994
38 Haystack: An intrusion detection system (context) - Smaha - 1988
37 Noise-tolerant instance-based learning algorithms (context) - Aha, Kibler - 1989 DBLP
37 An application of pattern matching in intrusion detection - Kumar, Spa - 1994
36 Direct transfer of learned information among neural networks - Pratt, Mostow et al. - 1991 DBLP
35 Mining audit data to build intrusion detection models - Lee, Stolfo et al. - 1998 DBLP
33 Activity monitoring: Noticing interesting changes in behavio.. - Fawcett, Provost - 1999 DBLP
31 Discriminability-based transfer between neural networks - Pratt - 1993
31 Discrete sequence prediction and its applications (context) - Laird, Saul - 1994 ACM DBLP
29 Rule induction and instance-based learning: A unied approach - Domingos - 1995
28 Adaptive real-time anomaly detection using inductively gener.. (context) - Teng, Chen et al. - 1990 DBLP
28 The Cuckoo's Egg (context) - Stoll - 1989 ACM
28 Discovering structure in multiple learning tasks: The TC alg.. - Thrun, O'Sullivan - 1996
27 Predicting sequences of user actions - Davison, Hirsh - 1998
25 Learning patterns from UNIX process execution traces for int.. - Lee, Stolfo et al. - 1997
24 Intrusion detection with neural networks - Ryan, Lin et al. - 1997 ACM DBLP
24 Automating the hunt for volcanoes on Venus - Burl, Fayyad et al. - 1994
24 Learning logical denitions from relations (context) - Quinlan - 1990
22 Norms: NN Pattern Classication Techniques (context) - Dasarathy, NN - 1991
21 A prototype real-time intrusion-detection expert system (context) - Lunt, Jagannathan - 1988
21 Data Mining and Knowledge Discovery (context) - Fawcett, Provost et al. - 1997 ACM
20 SKICAT: A machine learning system for automated cataloging o.. (context) - Fayyad, Weir et al. - 1993 DBLP
17 IDES: An intelligent system for detecting intruders (context) - Lunt - 1990
16 Reduction techniques for exemplar-based learning algorithms - Wilson, Martinez - 2000
16 Automated user modeling for intelligent interface (context) - Yoshida, Motoda - 1996 ACM
15 Learning sequential tasks by incrementally adding higher ord.. - Ring - 1993
15 Locating protein coding regions in human DNA using a decisio.. - Salzberg - 1995 DBLP
14 ACM Computer Communication Review (context) - Spa, Internet et al. - 1989
14 Lifelong learning: A case study - Thrun - 1995
13 Security audit trail analysis using inductively generated pr.. (context) - Teng, Chen et al. - 1990 ACM
12 Learning to recognize promoter sequences in E (context) - Norton - 1994
12 Using Unix: Collected traces of 168 users (context) - Greenberg - 1988
11 A fast computer intrusion detection algorithm based on hypot.. (context) - DuMouchel, Schonlau - 1998 DBLP
11 the hidden Markov model and dynamic time warping for speech .. (context) - Juang - 1984
11 Shifting inductive bias with successstory algorithm (context) - Schmidhuber, Zhao et al. - 1997
11 Upper Saddle River (context) - eeger, Computing et al. - 1997
11 Handbook of Parametric and Nonparametric Statistical Procedu.. (context) - Sheskin - 1997
10 Markov monitoring with unknown states - Smyth - 1994
10 A multi-component nonlinear prediction system for the S&P 50.. - Chenoweth, Obradovic - 1996
10 On learning how to learn learning strategies - Schmidhuber - 1994
9 Using the future to `sort out' the present: Rankprop and mul.. - Caruna, Baluja et al. - 1996
9 Testing for human perceptual categories in a physician-in-th.. - Shyu, Kak et al. - 1999 ACM
8 Inferring graphs from walks (context) - Aslam, Rivest - 1990 ACM DBLP
6 Classication and detection of computer intrusions (context) - Kumar - 1995
6 Dynamic programming inference of Markov networks from nite s.. (context) - Thomason, Granum - 1986
6 Improved bayesian learning of hidden markov models for speak.. (context) - Chien, Lee et al. - 1997 ACM
6 Hidden markov model humancomputer interface modeling - markov, human et al. - 1999
6 Intrusion detection based on structural zeroes - Theus, Schonlau - 1998
6 Robust classication systems for imprecise environments (context) - Provost, Fawcett - 1998
5 Inference of nite automata using homing sequences (context) - Rivest, Schapire - 1989
5 Automatic generation of hidden Markov networks by successive.. (context) - Takami, Sagayama - 1994
5 Time-series similarity problems and well-separated geometric.. (context) - Bollob, Das et al. - 1997 ACM DBLP
4 Security Administrator Tool for Analyzing Networks (context) - Farmer, Venema - 1995
4 Bayesianinformation theoretic model learning to learn via mu.. (context) - information, of et al. - 1997
4 Current computer virus threats (context) - Gordon - 1996
4 An algorithm to determine hidden Markov model topology (context) - Vasko, El-Jaroudi et al. - 1996
4 A nearest hyperrectangular learning method (context) - Salzberg - 1991
3 Transfer between neural networks to speed up learning (context) - Pratt - 1996
3 Image feature reduction through spoiling: Its application to.. (context) - Stough, Brodley - 1997
3 Learning regular sets from queries and counterexamples (context) - Angulin - 1987 ACM DBLP
3 Hidden Markov monitoring for fault detection in dynamic syst.. (context) - Smyth - 1994
3 Algorithm for the dynamic inference of hidden Markov models (context) - Lockwood, Blanchet - 1993
3 Intrusion detection for network infrastructures (context) - Cheung, Levitt et al. - 1995
2 Available at http://www (context) - Systems, GA et al. - 2000
2 Automated information system (context) - Hunteman - 1997
2 Heterogeneous learning in the Doppelganger user modeling sy.. (context) - Orwant - 1995
2 th thing any easier than learning the rst (context) - Thrun, the - 1996
2 and bi-level methods for stacking: Metamethods for classicat.. (context) - Scha, Cross-validation - 1994
2 Multitask learning: A knowledge-based source of inductive bi.. (context) - Caruna - 1993 DBLP
2 Current and Future Danger: A CSI Primer on Computer Crime & .. (context) - Power - 1998
1 Air force mounts o ensive against computer crime (context) - Boedges - 1988
1 The security facade (context) - Violino - 1996
1 Learning the structure of HMM's through grammatical inferenc.. (context) - Casacuberta, Vidal et al. - 1990
1 Safeguard nal report: Detecting unusual program behavior usi.. (context) - Anderson, Lunt et al. - 1993
1 Personal communication (context) - Schonlau - 2000
1 Available on Cisco Documentation CD-ROM or at http://www (context) - Inc, Jose et al. - 1999
Documents on the same site (http://www.ai.mit.edu/people/terran/research/publist.html): More
Hidden Markov Models for Human/Computer Interface Modeling - Lane (1999) (Correct)
Temporal Sequence Learning and Data Reduction for Anomaly.. - Lane, Brodley (1998) (Correct)
Toward Hierachical Decomposition for Planning in Uncertain.. - Lane, Kaelbling (2001) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC