Abstract
An immunity-based approach that utilizes multiple profiles for detecting masqueraders in UNIX-like systems has been developed and evaluated. The approach was independent of the profile construction method. Experimental results can be summarized as follows: 1) the present approach outperformed a number of previous approaches; 2) performance was almost independent of the number of accounts when the number of accounts exceeded 10; 3) the addition of profiles enhanced performance.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
National plan for information systems protection, Washington, D. C. (2000)
Davison, B., Hirsh, H.: Predicting sequences of user action. In: Proc. of AAAI 1998/ICML 1998 Workshop. Technical Report WS-98-07, AAAI Press, pp. 5–12 (1998)
Lane, T.: Hidden markov models for human/computer interface modeling. In: Proc. of IJCAI 1999 Workshop on Learning about Users, pp. 35–44 (1999)
Okamoto, T., Ishida, Y.: Test statistics for a masquerader detection system – a comparison between hidden markov model and other probabilistic models. Transactions of the ISCIE 16, 61–69 (2003)
Schonlau, M., Theus, M.: Detecting masquerades in intrusion detection based on unpopular commands. Information Processing Letters 76, 33–38 (2000)
Schonlau, M., DuMouchel, W., Ju, W., Karr, A., Theus, M., Vardi, Y.: Computer intrusion: Detecting masquerades. Statistical Science 16, 58–74 (2001)
Egan, J.: Signal Detection Theory and ROC Analysis. Academic Press, London (1975)
Schonlau, M.: Masquerading user data (Matthias Schonlau’s (Matt Schonlau) home page), http://www.schonlau.net
Forrest, S., Hofmeyr, S., Somayaji, A., Longstaff, T.: A sense of self for unix processes. In: IEEE Symposium on Security and Privacy, pp. 120–128 (1996)
Ishida, Y., Adachi, N.: An immune algorithm for multiagent: Application to adaptive noise neutralization. In: Proc. of IROS 1996, pp. 1739–1746 (1996)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Okamoto, T., Watanabe, T., Ishida, Y. (2003). Towards an Immunity-Based System for Detecting Masqueraders. In: Palade, V., Howlett, R.J., Jain, L. (eds) Knowledge-Based Intelligent Information and Engineering Systems. KES 2003. Lecture Notes in Computer Science(), vol 2774. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45226-3_67
Download citation
DOI: https://doi.org/10.1007/978-3-540-45226-3_67
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-40804-8
Online ISBN: 978-3-540-45226-3
eBook Packages: Springer Book Archive