AN ONLINE UNSUPERVISED INTRUSION DETECTION SYSTEM BASED-ON SVM
Using frequency weighted mining algorithm with real-time data processing capability to calculate each system call’s frequency value for existed audit records, and we got a vector set of progress. The vector set was linearly scanned and its progresses were labeled as “normal or “attack according to their distance relations. Then we got a SVM training set without man-made supervision. Finally, the normal behavior profiles for monitoring the target system were generated by SVM classifier so as to build a practical online intrusion detection system without human intervention.
intrusion detection frequency weighted linear scanning Support Vector Machine
Hu Liang Nurbol Lin Lin Zhao Kuo
Department of Computer Science and Technology,Jilin University, Changchun
国际会议
北京
英文
438-442
2009-10-18(万方平台首次上网日期,不代表论文的发表时间)