Framework of an immunity-based anomaly detection system for user behavior

Authors:
Takeshi Okamoto;Yoshiteru Ishida
Affiliations:
Department of Network Engineering, Kanagawa Institute of Technology, Atsugi, Kanagawa, Japan;Department of Knowledge-Based Information Engineering, Toyohashi University of Technology, Toyohashi, Aichi, Japan
Venue:
KES'07/WIRN'07 Proceedings of the 11th international conference, KES 2007 and XVII Italian workshop on neural networks conference on Knowledge-based intelligent information and engineering systems: Part III
Year:
2007

Citing 2
Cited 2

A Sense of Self for Unix Processes

SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
Towards an immunity-based anomaly detection system for network traffic

KES'06 Proceedings of the 10th international conference on Knowledge-Based Intelligent Information and Engineering Systems - Volume Part II

Dynamic Updating of Profiles for an Immunity-Based Anomaly Detection System

KES '08 Proceedings of the 12th international conference on Knowledge-Based Intelligent Information and Engineering Systems, Part III
Intelligent agent based artificial immune system for computer security--a review

Artificial Intelligence Review

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper focuses on anomaly detection in user behavior. We present a review of our immunity-based anomaly detection system, and propose a framework of the immunity-based anomaly detection system with a new mechanism of diversity generation. In the framework, each computer on a LAN generates diverse agents, and the agents generated on each computer are shared with all other computers on the LAN. The sharing of agents contributes to their diversity. In addition, we propose an evaluation framework of immunity-based anomaly detection, which is capable of evaluating the differences in detection accuracy between internal and external malicious users.