Adam

Barbará, Daniel; Couto, Julia; Jajodia, Sushil; Wu, Ningning

doi:10.1145/604264.604268

Cited by 183 publications

(12 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Data mining, however, lacks the local estimation and training aspects characteristics of conformal prediction, in general, and transduction, in particular, which provide for locality that reveals specific context, location, and time stamps. One early example for data mining use is audit data analysis and mining (ADAM) system [55] to discover attacks in a TCP dump audit trail using KDD 1999 for test bed and seeking DOS and PROBE attacks. ADAM leverages A Priori association mining to derive (antecedent to consequent) rules of legitimate behavior (e.g., profiles free of attacks) in terms of "normal" frequent item sets.…”

Section: Immunity and Detectionmentioning

confidence: 99%

Cyberspace Security Using Adversarial Learning and Conformal Prediction

Wechsler¹

2015

IIM

View full text Add to dashboard Cite

This paper advances new directions for cyber security using adversarial learning and conformal prediction in order to enhance network and computing services defenses against adaptive, malicious, persistent, and tactical offensive threats. Conformal prediction is the principled and unified adaptive and learning framework used to design, develop, and deploy a multi-faceted self-managing defensive shield to detect, disrupt, and deny intrusive attacks, hostile and malicious behavior, and subterfuge. Conformal prediction leverages apparent relationships between immunity and intrusion detection using non-conformity measures characteristic of affinity, a typicality, and surprise, to recognize patterns and messages as friend or foe and to respond to them accordingly. The solutions proffered throughout are built around active learning, meta-reasoning, randomness, distributed semantics and stratification, and most important and above all around adaptive Oracles. The motivation for using conformal prediction and its immediate off-spring, those of semi-supervised learning and transduction, comes from them first and foremost supporting discriminative and non-parametric methods characteristic of principled demarcation using cohorts and sensitivity analysis to hedge on the prediction outcomes including negative selection, on one side, and providing credibility and confidence indices that assist meta-reasoning and information fusion.

show abstract

Section: Immunity and Detectionmentioning

confidence: 99%

Cyberspace Security Using Adversarial Learning and Conformal Prediction

Wechsler¹

2015

IIM

View full text Add to dashboard Cite

show abstract

“…However, it is also a fact that the minority intrusions are more dangerous than the majority attacks. One of the problems of supervised anomaly intrusion detection approaches [26] is the high dependency on training data for normal activities.…”

Section: Data Mining In Idsmentioning

confidence: 99%

“…ad hoc is Latin and means "for this purpose‖. Each device in a MANET is free to move independently in any direction, and will therefore change its links to other devices frequently [30]. Each must forward traffic unrelated to its own use, and therefore be a router.…”

Section: Intrusion Detection In Manetmentioning

confidence: 99%

“…The technique of intrusion detection can be termed as the mechanism which is used for detecting the suspicious activities at host as well as at the network level. The two major intrusion detection techniques are the misuse detection and the anomaly detection [26]. In the anomaly based technique the audit data is utilized to differentiate the abnormal data from the normal data.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Critical analysis of genetic algorithm based IDS and an approach for detecting intrusion in MANET using data mining techniques

Shingari¹

2012

IOSRJCE

View full text Add to dashboard Cite

“…Finally, developing a clustering or classification model for intrusion detection, which provide decision support to intrusion management for detecting known and unknown intrusions by discovering intrusion patterns [4,5].…”

Section: Introductionmentioning

confidence: 99%