Back
  1. Home
  3. Detailled Reference
Request a copy
Paper published in a book (Scientific congresses, symposiums and conference proceedings)
Abstracting Audit Data for Lightweight Intrusion Detection
Wang, Wei; Zhang, Xiangliang; Pitsilis, Georgios
2010In Information Systems Security
Permalink
https://hdl.handle.net/10993/16014
DOI
10.1007/978-3-642-17714-9_15
 

Files (1)Send toDetailsStatisticsBibliographySimilar publications

Files

Full Text
Wang.pdf
Publisher postprint (266.9 kB)
Request a copy

All documents in ORBilu are protected by a user license.

Send to


Details


Abstract :
[en] High speed of processing massive audit data is crucial for an anomaly Intrusion Detection System (IDS) to achieve real-time performance during the detection. Abstracting audit data is a potential solution to improve the efficiency of data processing. In this work, we propose two strategies of data abstraction in order to build a lightweight detection model. The first strategy is exemplar extraction and the second is attribute abstraction. Two clustering algorithms, Affinity Propagation (AP) as well as traditional k-means, are employed to extract the exemplars, and Principal Component Analysis (PCA) is employed to abstract important attributes (a.k.a. features) from the audit data. Real HTTP traffic data collected in our institute as well as KDD 1999 data are used to validate the two strategies of data abstraction. The extensive test results show that the process of exemplar extraction significantly improves the detection efficiency and has a better detection performance than PCA in data abstraction.
Disciplines :
Computer science
Identifiers :
UNILU:UL-CONFERENCE-2010-449
Author, co-author :
Wang, Wei ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Zhang, Xiangliang;  King Abdullah University of Science and Technology (KAUST), Saudi Arabia
Pitsilis, Georgios ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Language :
English
Title :
Abstracting Audit Data for Lightweight Intrusion Detection
Publication date :
2010
Event name :
6th International Conference on Information Systems Security
Event place :
Gujarat, India
Event date :
17-19 December 2010
Main work title :
Information Systems Security
Publisher :
Springer, Berlin, Germany
ISBN/EAN :
978-3-642-17713-2
Collection name :
Lecture Notes in Computer Science, 6503
Pages :
201-215
Available on ORBilu :
since 13 March 2014

Statistics

Number of views
60 (0 by Unilu)
Number of downloads
0 (0 by Unilu)
More statistics
Scopus citations®
 
6
Scopus citations®
without self-citations
4
OpenCitations
 
3

Bibliography

Similar publications


Contact ORBilu