Unsupervised learning and rule extraction for Domain Name Server tunneling detection

Aiello, Maurizio; Mongelli, Maurizio; Muselli, Marco; Verda, Damiano

doi:10.1002/itl2.85

Cited by 9 publications

(1 citation statement)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Splits are generated continuously, as soon as new samples are collected. Incremental techniques may be also used to accelerate the computation of statistically-based features (mean, variance, skewness and kurtosis), as in the RUL and DNS problems detailed later on [23]. Like in incremental techniques, once a new sample is available, a new (operational) bunch of n s samples is built, by adding the new sample and by disregarding the most far away point in the past (of n s positions).…”

Section: A Incremental Techniquementioning

confidence: 99%

Rule-based Out-Of-Distribution Detection

Bernardi¹,

Narteni²,

Cambiaso³

et al. 2023

Preprint

View full text Add to dashboard Cite

Out-of-distribution detection is one of the most critical issue in the deployment of machine learning. The data analyst must assure that data in operation should be compliant with the training phase as well as understand if the environment has changed in a way that autonomous decisions would not be safe anymore. The method of the paper is based on eXplainable Artificial Intelligence (XAI); it takes into account different metrics to identify any resemblance between in-distribution and out of, as seen by the XAI model. The approach is non-parametric and distributional assumption free. The validation over complex scenarios (predictive maintenance, vehicle platooning, covert channels in cybersecurity) corroborates both precision in detection and evaluation of training-operation conditions proximity.

show abstract

Section: A Incremental Techniquementioning

confidence: 99%