REAL TIME DETECTION OF NOVEL ATTACKS BY MEANS OF DATA MINING TECHNIQUES

Marcello Esposito; Claudio Mazzariello; Francesco Oliviero; Simon Pietro Romano; Carlo Sansone

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

REAL TIME DETECTION OF NOVEL ATTACKS BY MEANS OF DATA MINING TECHNIQUES

Topics: Security, Freedom and Privacy

In Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS, 120-127, 2005 , Miami, United States

Authors: Marcello Esposito ; Claudio Mazzariello ; Francesco Oliviero ; Simon Pietro Romano and Carlo Sansone

Affiliation: Università degli Studi di Napoli “Federico II”, Italy

Keyword(s): Intrusion Detection, Traffic Features.

Related Ontology Subjects/Areas/Topics: Enterprise Information Systems ; Formal Methods ; Information Systems Analysis and Specification ; Methodologies and Technologies ; Operational Research ; Security ; Simulation and Modeling

Abstract: Rule-based Intrusion Detection Systems (IDS) rely on a set of rules to discover attacks in network traffic. Such rules are usually hand-coded by a security administrator and statically detect one or few attack types: minor modifications of an attack may result in detection failures. For that reason, signature based classification is not the best technique to detect novel or slightly modified attacks. In this paper we approach this problem by extracting a set of features from network traffic and computing rules which are able to classify such traffic. Such techniques are usually employed in off line analysis, as they are very slow and resource-consuming. We want to assess the feasibility of a detection technique which combines the use of a common signature-based intrusion detection system and the deployment of a data mining technique. We will introduce the problem, describe the developed architecture and show some experimental results to demonstrate the usability of such a system.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.119.105.239

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Esposito, M.; Mazzariello, C.; Oliviero, F.; Pietro Romano, S. and Sansone, C. (2005). REAL TIME DETECTION OF NOVEL ATTACKS BY MEANS OF DATA MINING TECHNIQUES. In Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS; ISBN 972-8865-19-8; ISSN 2184-4992, SciTePress, pages 120-127. DOI: 10.5220/0002536601200127

@conference{iceis05,
author={Marcello Esposito. and Claudio Mazzariello. and Francesco Oliviero. and Simon {Pietro Romano}. and Carlo Sansone.},
title={REAL TIME DETECTION OF NOVEL ATTACKS BY MEANS OF DATA MINING TECHNIQUES},
booktitle={Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS},
year={2005},
pages={120-127},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002536601200127},
isbn={972-8865-19-8},
issn={2184-4992},
}

TY - CONF

JO - Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS
TI - REAL TIME DETECTION OF NOVEL ATTACKS BY MEANS OF DATA MINING TECHNIQUES
SN - 972-8865-19-8
IS - 2184-4992
AU - Esposito, M.
AU - Mazzariello, C.
AU - Oliviero, F.
AU - Pietro Romano, S.
AU - Sansone, C.
PY - 2005
SP - 120
EP - 127
DO - 10.5220/0002536601200127
PB - SciTePress