IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Online ISSN : 1745-1337
Print ISSN : 0916-8508
Special Section on Recent Advances in Technologies for Assessing System Reliability
A Cyber-Attack Detection Model Based on Multivariate Analyses
Yuto SAKAIKoichiro RINSAKATadashi DOHI
Author information
Keywords: information security, cyber-attack, intrusion detection, quantification method, cluster analysis
JOURNAL RESTRICTED ACCESS

2009 Volume E92.A Issue 7 Pages 1585-1592

Details
Download PDF (344K)
Download citation RIS

(compatible with EndNote, Reference Manager, ProCite, RefWorks)

BIB TEX

(compatible with BibDesk, LaTeX)

Text
How to download citation
Contact us
Abstract
In the present paper, we propose a novel cyber-attack detection model based on two multivariate-analysis methods to the audit data observed on a host machine. The statistical techniques used here are the well-known Hayashi's quantification method IV and cluster analysis method. We quantify the observed qualitative audit event sequence via the quantification method IV, and collect similar audit event sequence in the same groups based on the cluster analysis. It is shown in simulation experiments that our model can improve the cyber-attack detection accuracy in some realistic cases where both normal and attack activities are intermingled.
Content from these authors
© 2009 The Institute of Electronics, Information and Communication Engineers
Previous article Next article
Favorites & Alerts

Recently viewed articles
Announcements from publisher
Share this page
feedback
 Top