A NETWORK-BASED ANOMALY DETECTION SYSTEM USING MULTIPLE NETWORK FEATURES
Yuji Waizumi, Yohei Sato, Yoshiaki Nemoto
2007
Abstract
Accuracy of anomaly-based intrusion detection greatly depends on features, the numerical values representing characteristics of network traffic. In order to increase accuracy, it is necessary to choose appropriate features that can correctly detect anomalous events. In this paper, we stress the fact that a specific kind of anomaly changes specific features. We propose a highly accurate and robust intrusion detection system using multiple features. Each feature is used for evaluating anomalous events independently by a statistical detection method. Through experiments, we investigate the accuracy of the proposed scheme.
DownloadPaper Citation
in Harvard Style
Waizumi Y., Sato Y. and Nemoto Y. (2007). A NETWORK-BASED ANOMALY DETECTION SYSTEM USING MULTIPLE NETWORK FEATURES . In Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-972-8865-77-1, pages 410-413. DOI: 10.5220/0001279304100413
in Bibtex Style
@conference{webist07,
author={Yuji Waizumi and Yohei Sato and Yoshiaki Nemoto},
title={A NETWORK-BASED ANOMALY DETECTION SYSTEM USING MULTIPLE NETWORK FEATURES},
booktitle={Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2007},
pages={410-413},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001279304100413},
isbn={978-972-8865-77-1},
}
in EndNote Style
TY - CONF
JO - Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - A NETWORK-BASED ANOMALY DETECTION SYSTEM USING MULTIPLE NETWORK FEATURES
SN - 978-972-8865-77-1
AU - Waizumi Y.
AU - Sato Y.
AU - Nemoto Y.
PY - 2007
SP - 410
EP - 413
DO - 10.5220/0001279304100413