Improvement of Anomaly Intrusion Detection Performance by Indirect Relation for FTP Service

Cha, ByungRae; Jeong, JongGeun

doi:10.1007/978-3-540-73007-1_108

ByungRae Cha¹ &
JongGeun Jeong²

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 4507))

Included in the following conference series:

International Work-Conference on Artificial Neural Networks

2196 Accesses
1 Citations

Abstract

In this paper, intrusion detection method using Bayesian Networks was estimated probability values of behavior contexts based on Bayes theory and Indirect relation. The contexts of network-based FTP service was represented Bayesian Networks of graphic types. We profiled concisely network-based FTP behaviors using behavior context by prior, posterior and Indirect relation. And this method be able to visualize behavior profile to detect/analyze anomaly behavior by BF-XML. We achieve simulation to translate audit data of network into BF-XML which is behavior profile of semi-structured data type for anomaly detection and to visualize BF-XML as SVG.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 84.99; Price excludes VAT (USA)

Softcover Book: USD 109.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Nassehi, M.: Characterizing Masqueraders for Intrusion Detection. Computer Science/Mathematics (1998)
Google Scholar
Scott, S. L.: A Bayesian Paradigm for Designing Intrusion Detection Systems. Computational Statistics and Data Analysis (June 20, 2002)
Google Scholar
Denning, D.E.: An Intrusion-Detection Model. IEEE Transaction on Software Engineering 13(2), 222–232 (1987)
Article Google Scholar
Shieh, S.-P., Gligor, V.D.: On a Pattern-Oriented Model for Intrusion Detection. IEEE Transaction on knowledge and Data Engineering 9(4) (1997)
Google Scholar
Kumar, S., Spafford, E.H.: An Application of Pattern Matching in Intrusion Detection. Technical Report CSD-TR-94-013 (June 17, 1994)
Google Scholar
Barbara, D., Couto, J., Jajodia, S., Popyack, L., Wu, N.: ADAM: Detecting Intrusions by Data Mining. In: Proceedings of the 2001 IEEE Workshop on Information Assurance and Security (2001)
Google Scholar
Cha, B.: The Prototype of Bayesian framework based on XML for System Call Profiling. GESTS Int’l Trans. Computer Science and Eng. 15(1) (2005)
Google Scholar
Mahoney, M.V., Chan, P.K.: Learning Nonstationary Models of Normal Network Traffic for Detecting Novel Attacks (2002)
Google Scholar
http://www.ll.mit.edu/IST/ideval/data/data_index.html

Download references

Author information

Authors and Affiliations

Dept. of Computer Eng., Honam Univ., Korea
ByungRae Cha
Korea Research Foundation, Korea
JongGeun Jeong

Authors

ByungRae Cha
View author publications
You can also search for this author in PubMed Google Scholar
JongGeun Jeong
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Francisco Sandoval Alberto Prieto Joan Cabestany Manuel Graña

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Cha, B., Jeong, J. (2007). Improvement of Anomaly Intrusion Detection Performance by Indirect Relation for FTP Service. In: Sandoval, F., Prieto, A., Cabestany, J., Graña, M. (eds) Computational and Ambient Intelligence. IWANN 2007. Lecture Notes in Computer Science, vol 4507. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-73007-1_108

Download citation

DOI: https://doi.org/10.1007/978-3-540-73007-1_108
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-73006-4
Online ISBN: 978-3-540-73007-1
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics