Referenced Items are not available for this document.
Anomaly detection provides automated detection of unauthorized intrusion into a computer system by creating a normal profile of the system's behavior, then raising an alert when the system's behavior does not fit the system's normal profile. Approaches to anomaly detection that focus on investigating user's behavior typically assume that a user's command sequences will not vary significantly over time and so tend to flag "unusual" but safe activities as anomalies. We propose the use of "time-variant normal" user profiles that assume a user will change activities over time. The approach combines string-matching algorithms from machine intelligence and sequence alignment algorithms from biomedical informatics to dynamically evaluate user behavior.
Published in:
Automation Congress, 2006. WAC '06. World
Date of Conference: 24-26 July 2006
- Page(s):
- 1 - 4
- Print ISBN:
- 1-889335-33-9
- INSPEC Accession Number:
- 9719053
- Conference Location :
- Budapest
- Digital Object Identifier :
- 10.1109/WAC.2006.376026
- Product Type:
- Conference Publications
About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.
