Dirk Ourston, Sara Matzner, William Stump, Bryan Hopkins  Home/Search
Context
Related
| hawaii.edu/HICSS36/HICSSp...STSSS03.pdf Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: hawaii.edu/HICS...icHICSS__36Web (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: This paper describes a novel approach using Hidden Markov Models (HMM) to detect complex Internet attacks. These attacks consist of several steps that may occur over an extended period of time. Within each step, specific actions may be interchangeable. A perpetrator may deliberately use a choice of actions within a step to mask the intrusion. In other cases, alternate action sequences may be random (due to noise) or because of lack of experience on the part of the perpetrator. For an intrusion... (Update)
Active bibliography (related documents): More All
0.6: Intrusion Detection: A Bibliography - Mé, Michel (2001) (Correct)
0.5: Text Augmentation: Inserting XML tags into natural language text.. - Yeates (2003) (Correct)
0.5: PNrule: A New Framework for Learning Classifier Models in.. - Agarwal, Joshi (2000) (Correct)
Similar documents based on text: More All
0.1: Topological Essentialism - Casati, Varzi (2000) (Correct)
0.1: Theory Refinement with Noisy Data - Mooney, Ourston (1991) (Correct)
0.1: Theory Refinement Combining Analytical and Empirical Methods - Ourston, Mooney (1994) (Correct)
BibTeX entry: (Update)
@misc{ ourston-applications,
author = "Dirk Ourston and Sara Matzner and William Stump and Bryan Hopkins",
title = "Applications of Hidden Markov Models to Detecting Multi-stage Network Attacks",
url = "citeseer.ist.psu.edu/ourston03applications.html" }
Citations (may not include all citations):503 Instance-Based Learning Algorithms (context) - Aha, Kibler et al. - 1991
362 An Introduction to Hidden Markov Models (context) - Rabiner, Juang - 1986
328 Foundations of Statistical Natural Language Processing - Manning, Schutze
262 Data Mining: Practical Machine Learning Tools and Techniques.. (context) - Witten, Eibe - 2000
136 Hidden Markov Models for Speech Recognition (context) - Huang, Ariki et al. - 1990
110 Probability and Statistics (context) - DeGroot
60 Detecting Intrusions Using System Calls: Alternative Data Mo.. - Warrender, Forrest et al. - 1999
56 Signal Detection Theory and ROC Analysis (context) - Egan - 1975
53 Robust Classification for Imprecise Environments - Provost, Fawcett - 2001
43 Boosted Wrapper Induction - Freitag, Kushmerick - 2000
38 Probabilistic Alert Correlation - Valdes, Skinner - 2001
22 Anomaly Detection over Noisy Data Using Learned Probability .. - Eskin - 2000
19 Using Explanation-Based and Empirical Methods in Theory Revi.. (context) - Ourston - 1991
17 Managing Alerts in a Multi-intrusion Detection Environment (context) - Cuppens - 2001
13 A Data Mining Analysis of RTID Alarms (context) - Manganaris - 1999
9 Theory Refinement with Noisy Data - Mooney, Ourston - 1991
8 Learning from Imbalanced Data Sets: A Comparison of Various .. - Japkowicz - 2000
5 Mining Needles in a Haystack: Classifying Rare Classes via T.. - Joshi, Agarwal et al. - 2001
4 A Simple Generalization of the Area under the Roc Curve for .. (context) - Hand, Till - 2001
4 Hidden Markov Models: Applications in Computer Vision (context) - Bunke, Caelli - 2001
3 Detecting Homogeneous Segments in DNA Sequences by Using Hid.. (context) - Boys, Henderson et al. - 2000
3 Theoretical Analysis of an Alphabetic Confusion Matrix (context) - Townsend - 1971
3 Temporal Sequence Learning for Anomaly Detection (context) - Lane, Brodley - 1998
2 Text Mining Using HMM and PPM - Wen - 2001
2 Analysis Techniques for Detecting Coordinated Attacks and Pr.. (context) - Green, Marchette et al. - 1999
2 PNrule: A New Framework for Learning Classifier Models in Da.. - Agarwal, Joshi - 2000
1 Identifying Coordinated Internet Attacks (context) - Ourston, Matzner et al. - 2001
1 An Application of Machine Learning Techniques to Network Int.. (context) - Sinclair, Pierce et al. - 1999
http://www.vilab.com/hmmlib/home.html
Documents on the same site (http://www.hicss.hawaii.edu/HICSS36/jicHICSS_-_36Web.htm): More
Applying Multiple Query Optimization in Mobile Databases - Malladi, Davis (2003) (Correct)
Synthesizing Evocative Imagery through Design Patterns - Russell, Dieberger (2003) (Correct)
Evaluating Telemedicine Systems Success: A Revised Model - Hu (2003) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC