Maintaining knowledge about temporal intervals
Communications of the ACM
HIDSUR: A Hybrid Intrusion Detection System Based on Real-Time User Recognition
DEXA '00 Proceedings of the 11th International Workshop on Database and Expert Systems Applications
Composing Miners to Develop an Intrusion Detection Solution
Privacy, Security, and Trust in KDD
| Hi-index | 0.00 |
Fast expansion of inexpensive computers and computer networks has dramatically increased number of computer security incidents during last years. While quite many computer systems are still vulnerable to numerous attacks, intrusion detection has become vitally important as a response to constantly increasing number of threats. In this paper we discuss an approach to discover temporal and sequential regularities in user behavior. We present an algorithm that allows creating and maintaining user profiles relying not only on sequential information but taking into account temporal features, such as events' lengths and possible temporal relations between them. The constructed profiles represent peculiarities of users' behavior and used to decide whether a behavior of a certain user is normal or abnormal.